WO2008029828A1 - Système pour gérer une identification concernant une authentification d'un dispositif électronique - Google Patents

Système pour gérer une identification concernant une authentification d'un dispositif électronique Download PDF

Info

Publication number
WO2008029828A1
WO2008029828A1 PCT/JP2007/067266 JP2007067266W WO2008029828A1 WO 2008029828 A1 WO2008029828 A1 WO 2008029828A1 JP 2007067266 W JP2007067266 W JP 2007067266W WO 2008029828 A1 WO2008029828 A1 WO 2008029828A1
Authority
WO
WIPO (PCT)
Prior art keywords
service
request
electronic device
identification information
usage history
Prior art date
Application number
PCT/JP2007/067266
Other languages
English (en)
Japanese (ja)
Inventor
Masaaki Tojo
Kohtaro Fukui
Koji Tomita
Original Assignee
Panasonic Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Panasonic Corporation filed Critical Panasonic Corporation
Publication of WO2008029828A1 publication Critical patent/WO2008029828A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/316User authentication by observing the pattern of computer usage, e.g. typical user behaviour
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2115Third party

Definitions

  • the present invention relates to a system for identification management related to authentication of electronic devices.
  • a service providing system that provides a service required from an electronic device such as a mobile communication device and performs a settlement procedure for the order is known (for example, see Patent Document 1).
  • one business operator makes a contract with one or more service providers, and the electronic device used by a service user who has made another contract with that business operator. The authentication etc. are judged based on the electronic device identification information! / ⁇
  • the service provider is provided with the service for the electronic device for which the judgment is made, and the price is collected from the user. Yes. For example, if a mobile phone operator signs a contract with a content company that provides sound sources, and the user requests a sound source from the mobile phone, the content company provides the sound source and collects the consideration from the user. A part of the consideration collected is provided.
  • This business model is called “vertical integration model”.
  • Patent Document 1 Japanese Unexamined Patent Application Publication No. 2004-227055
  • FIG. 1 is a diagram for explaining the situation in the background art described above.
  • the first electronic device 103 can be used to receive a service from the first service server group 104 operated by a service provider having a different contractual relationship with the operator.
  • one vertical integrated model is formed.
  • the user 101 is identified by the first determination server by the user identification information sakur a.
  • the user 101 has a contractual relationship with another business operator who operates the second determination server 105, and uses the second electronic device 106, which is an electronic device different from the first electronic device 103.
  • Service can be received from the second service server group 107 operated by a service provider that has a contractual relationship with another operator. This forms another vertical integration model.
  • the user 101 is identified by the second determination server with the user identification information momo.
  • the user 101 desires to use the first electronic device 103 to receive a service provided by the second service server group that has been received by the second electronic device 106. Even if the device 103 transmits a “request for use of the second service server” 108 and the request for use is transferred by the first determination server 102 as the use request 109 to the second determination server, The second determination server 105 cannot know the reason indicated, that is, whether the person identified by sakura and momo is the same person, and sak ura receives the service provided by the second service server group. For example, the second determination server 105 cannot recognize the use request of the second service server group from the first electronic device 103 because it cannot know whether or not there is a history of occurrence.
  • the user receives the provision of the service from the second service server group 107 received by the second electronic device 106 to the first electronic device 103 that is used in the same manner as the second electronic device 106.
  • the service is provided to the first electronic device belonging to the vertically integrated model of the first determination server 102 while being the same electronic device as the second electronic device 106. It cannot be provided, and services cannot be provided widely (this situation is referred to as the “vertical integration model wall”).
  • a main object of the present invention is to provide a system capable of breaking the vertical integration wall formed by the conventional vertical integration model. Means for solving the problem
  • the identification management server that received the guarantee request output from the first determination server searches the identification management unit to identify one user who uses multiple electronic devices.
  • the first determination server can output a service request with a guarantee to the second determination server, and the second determination server can receive the second service server by a service request with a guarantee.
  • the group can be determined to provide services to the first electronic device, and the problem is solved.
  • the identification management unit searches the identification management unit that has received the service request with a guarantee request from the first determination server.
  • the identification management server itself may output a guaranteed service request based on the search result to the second determination server.
  • the second determination server that received the service request from the first determination server sends a guarantee request to the identification management server. It may be output.
  • the identification management server may search the identification management unit and output a guarantee to the second determination server based on the search result.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and based on the usage history of the second service server group! /, By making it possible to provide services to the first electronic devices owned by users, one electronic device is bound by one vertical integrated model! The ability to break through the walls of S.
  • FIG. 1 A diagram explaining the situation in the background art
  • FIG. 2 is a diagram for explaining the outline of the first embodiment.
  • FIG. 4 is a diagram showing a specific example of processing in the system according to the first embodiment.
  • FIG. 5 is a diagram showing another specific example of processing in the system according to Embodiment 1.
  • FIG. 6 is an example of a usage history held in the usage history holding unit of the second determination server.
  • FIG. 8 is a diagram for explaining the outline of the second embodiment.
  • FIG. 10 is a functional block diagram of a system according to the first embodiment.
  • FIG. 11 is a diagram showing a specific example of processing in the system according to the second embodiment.
  • FIG. 12 is a diagram showing another specific example of processing in the system according to the second embodiment.
  • FIG. 13 is an example of a usage history held in the usage history holding unit of the second determination server.
  • FIG. 16 is a functional block diagram of a system according to the third embodiment.
  • FIG. 17 is a diagram showing a specific example of processing in the system according to the third embodiment.
  • FIG. 18 A diagram showing another specific example of processing in the system according to the third embodiment.
  • 19 A diagram for explaining the outline of the fourth embodiment
  • FIG. 20 is a functional block diagram of a system according to the fourth embodiment.
  • FIG. 21 is a diagram showing a specific example of processing in the system according to the fourth embodiment.
  • FIG. 22 is a diagram showing another specific example of processing in the system according to the fourth embodiment.
  • FIG. 23 is a diagram for explaining the outline of the fifth embodiment.
  • FIG. 24 is a functional block diagram of a system according to the fifth embodiment.
  • FIG. 25 is a diagram showing a specific example of processing in the system according to the fifth embodiment.
  • FIG. 26 is a diagram showing another specific example of processing in the system according to Embodiment 5.
  • FIG. 27 is a diagram for explaining the outline of the sixth embodiment.
  • FIG. 28 is a functional block diagram of a system according to the sixth embodiment.
  • FIG. 29 is a diagram showing a specific example of processing in the system according to the sixth embodiment.
  • FIG. 30 is a diagram showing another specific example of processing in the system according to Embodiment 6.
  • a system composed of a service server group, an electronic device, an identification management server, and a plurality of vertically integrated models that have power will be described.
  • it is a usage request for the second determination server from the first electronic device, and the user's second service is used.
  • the identification management server that has received the first assurance request output from the first determination server searches the identification management unit, and based on the search result A guarantee is output, and based on the guarantee, the service is provided from the second service server group to the first electronic device.
  • FIG. 2 is a diagram for explaining the outline of the first embodiment.
  • the first vertical integration model includes a first service server group 201, a first determination server 206, and a first electronic device 204.
  • the second vertical integration model includes a second service server group 202, a second determination server 207, and a second electronic device 205.
  • the first electronic device 204 and the second electronic device 205 are used by the same user 203.
  • an identification management server 208 that can be accessed in common from the first vertical integration model and the second vertical integration is provided.
  • the identification management server 208 manages the common identification information “aoi” given to the user 203, and this identification information is held by the first determination server 206 and the second determination server 207.
  • the first electronic device 204 and the second electronic device 205 normally receive a determination such as authentication by the first determination server 206 and the second determination server 207, respectively, and based on the determination, the first service Service is provided from the server group 201 and the second service server group 202. For example, you can receive various services such as browsing the Internet, downloading contents, and playing.
  • the user registers common identification information with the identification management server in advance to receive the service. Thereafter, the user registers the common identification information in the first determination server and the second determination server.
  • a request to use the second service server is transmitted from the first electronic device 204 to the first determination server 206.
  • the usage request may be transmitted via the first service server group 201.
  • the first determination server 206 transmits a first guarantee request including identification information (for example, “aoi”) based on the use request (2).
  • This transmission is performed from the ID management server 208 to ensure that the identification information is unique among a plurality of vertically integrated models (this guarantee is referred to as “guarantee of uniqueness”).
  • identification information for which such a guarantee has been made may be referred to as “common identification information”).
  • the identification management server 208 searches for the identification information included in the first assurance request output by the first determination server 206, and outputs the first assurance based on the search result (3).
  • the first determination server 206 outputs a service request with proof including common identification information based on the first proof (4).
  • the second determination server 207 receives the service request with proof, confirms the guarantee in the service request, and provides the service according to the service request. Also, when confirming the warranty, based on the service request with warranty, it is confirmed whether the common identification information and the identification information of the second electronic device 205 are associated with each other and managed by the second determination server 207. May be. Accordingly, the second determination server 207 can perform processing such as charging for the user 203 in accordance with the provision of the service.
  • FIG. 3 illustrates a functional block diagram of the system according to the first embodiment.
  • the system according to this embodiment includes a first service server group 301, a second service server group 302, a first electronic device 303, a second electronic device 304, a first determination server 305, and a second determination server.
  • the server includes a server 306 and an identification management server 307.
  • the identification management server 307 has at least an identification management unit 308.
  • First service server group 301 provides the first electronic device 303 with a first service based on the first determination.
  • First determination refers to a process of determining whether the first electronic device 303 can receive the first service from the first service server group 301 and / or the result thereof. For example, authentication performed by referring to the first electronic device identification information that is the identification information of the first electronic device 303 (for example, whether the first electronic device identification information is included in the list of identification information permitted to be accessed) Process) and result. Unless the first determination is obtained from the first determination server 303, the first electronic device 303 cannot receive the first service.
  • First Service refers to services provided to the first electronic device 303, such as browsing information using a communication network such as the Internet and content.
  • a primary service may consist of multiple services, not just a single service.
  • the first service server group and “group” are used for each service. Since there is a service server corresponding to each service, it is assumed that there are multiple service servers. Of course, the first service server group may be a single service server.
  • the “second service server group” 302 provides the second service to the second electronic device 304 based on the second determination.
  • “second determination” refers to a process of determining whether or not the second electronic device can receive the second service from the second service server group and / or the result thereof. Unless the second determination is obtained from the second determination server 306, the second electronic device 304 cannot receive the provision of the second service.
  • the “second service” is the same as the first service, and refers to the content given to the second electronic device 304 and the services provided, such as browsing information using a communication network such as the Internet, This includes downloading contents and sending / receiving information such as e-mail.
  • the secondary service may consist of multiple services, not just a single service.
  • the reason for using the second service server group and “group” is that there is a service server corresponding to each service, and it is assumed that there are multiple service servers.
  • the second service server group may consist of a single service server.
  • the first service server group 301 and the second service server group 302 may correspond to the same server.
  • First electronic device 303 is an electronic device that is used by a user and exclusively receives the first service from first service server group 301.
  • Specific examples of electronic devices include communication terminals such as personal computers and digital televisions, and mobile terminals such as mobile phones and PDAs (Personal Digital Assistance).
  • the user accesses the first determination server 305 and the first service server group 301 and transmits a use request.
  • the first electronic device 303 cannot normally receive a service provision from the second service server group 302. This is because there is a wall of the vertical integration model [0031] (Embodiment 1: Configuration: second electronic device)
  • the “second electronic device” 304 is an electronic device that is used by a user who uses the first electronic device 303 and exclusively receives the second service from the second service server group 302. In order for the user to receive the second service at the second electronic device 304, the user accesses the second determination server 306 and the second service server group 302 and transmits a use request. “Used by a user who uses the first electronic device 303” means that the second electronic device 304 and the first electronic device 303 are electronic devices that can be used by the same user. The first electronic device 30 3 and the second electronic device 304 are not necessarily different types of electronic devices!
  • the second electronic device 304 cannot normally receive service from the first service server group 301.
  • the first determination server 305 is a server that performs the first determination based on the first electronic device identification information so that the first electronic device 303 receives the first service from the first service server group 301.
  • the “first electronic device identification information” is information for uniquely identifying the first electronic device 303 within the range of the first service server group 301 and the first determination server 305.
  • the first electronic device 303 itself may be user identification information for identifying the user in the sense as long as the first service is provided via the first electronic device 303.
  • the first electronic device identification information is an identification that is normally used by the first determination server 305 to determine whether the first electronic device 303 is an appropriate electronic device for receiving the service. Information.
  • the first electronic device identification information is identification information in a system that is uniquely constructed to receive the provision of the first service.
  • this corresponds to identification information used in a unique system comprising a billing server and a group of service servers for providing billing processing using the billing server.
  • the first determination server 305 includes a first association holding unit 309, a first guarantee request output unit 310, a first guarantee reception unit 311, and a service request output unit with guarantee 312.
  • a first determination server 305 stores one or more programs in a computer in which a CPU, memory, hard disk, input / output interface, and communication interface are connected by a bus. It can be realized by loading it into memory, executing it on the CPU, and accessing the hard disk, I / O interface, and communication interface.
  • the “first association holding unit” 309 holds the common identification information of the user and the first electronic device identification information in association with each other.
  • “Common identification information” is information for uniquely identifying a user in the system according to the present embodiment. “Common” means that, even if the judgment servers are different, the user is distinguished by the same identifier when the user accesses the judgment server using an electronic device. That is, the same identification information is registered in the determination server. There are various routes for registering the common identification information to the determination server, and the route is not limited to one.
  • the identification information when the same user receives the first service and the second service is generally referred to as first electronic device identification information and second electronic device identification information. Uses different identification information. Accordingly, it is difficult for the first determination server and the second determination server to determine whether or not the users who use the service are the same. Therefore, in this embodiment, it is possible to determine whether or not the users are the same by identifying the users based on the common identification information.
  • the first electronic device receives the first service from the first service server group based on the first electronic device identification information. Make a first decision as to whether or not This determination process is performed when the first electronic device requests provision of the first service by transmitting its first electronic device identification information to the first determination server. This process is a closed process within the vertical integration model related to the first service.
  • the first association holding unit 309 can be realized by storing a table storing common identification information and first electronic device identification information in a hard disk or the like, and a program module for accessing such a table.
  • the “First warranty request output unit” 310 outputs a first warranty request.
  • the “first assurance request” is information that requests the identification management server 307 to guarantee that the common identification information exists uniquely. Therefore, the user's common identification information is included in the first assurance request.
  • the common identification information of the user is based on the first electronic device identification information. Can be obtained by searching for.
  • the first warranty request is a usage request from the first electronic device 303, and is output based on the usage request to which a right should be given based on the usage history of the user's second service.
  • the use request means that the first electronic device 303 mainly requests the second determination server 306 to make a determination and requests the provision of services by the second service server group or the like. Further, it may indicate that the service is provided from the second determination server 306.
  • the first electronic device 303 cannot unconditionally receive the service provided by the second service server group 302 or the like, and the user uses the second electronic device 304 or the like, for example, at least once. It is necessary to receive services from the two service server group 302. This need is what is meant by “a usage request that should be given the right by the usage history of the user's second service”.
  • the second determination server 303 can allow the second service server group 302 to provide the service to the first electronic device 303 even if the first electronic device 303 and the second electronic device 303 Since the user with 304 is the same, there is an advantage that the user can be charged for payment.
  • the first electronic device 3 03 may transmit in order to request payment of the usage fee for the first service via the second determination server 306.
  • the predetermined service mainly means a service in the second service server group 302 after receiving the determination by the second determination server 306.
  • Specific services are as follows. In order to make it possible for the first electronic device 303 to view or play the encrypted content downloaded to the second electronic device 304, it is possible to obtain a decryption key via the second determination server. .
  • the first warranty request output unit 310 accesses the communication interface, receives the use request sent from the first electronic device 303, generates the first warranty request, stores it in a memory, etc., and performs communication. This can be realized by a program module that accesses and transmits the interface.
  • “First Guarantee Reception Unit” 311 receives the first guarantee returned from the identification management server 307 in response to the first guarantee request output from the first guarantee request output unit 310.
  • the power first assurance which will be described later regarding the processing of the identification management server 307, is information that guarantees that the common identification information included in the first assurance request exists uniquely. For example, it is a signature (a hash value encrypted with a secret key) for the common identification information by the identification management server 307. In addition to the common identification information, the signature may be included including the time information when the signature was made. This guarantees the time when the common identification information exists.
  • the first guarantee receiving unit 311 can be realized by a program module that accesses the communication interface, receives the first guarantee, and temporarily stores it in a memory or the like.
  • “Guaranteed service request output unit” 312 outputs a guaranteed service request including common identification information based on the first guarantee received by the first guarantee receiving unit 311.
  • Vertical integration in which the first decision server 305 and the second decision server 306 are different by adding the first guarantee from the identification management server 307 to the service request corresponding to the usage request and outputting it from the first decision server 305.
  • the second determination server 306 can trust the content of the service request, particularly the common identification information, to be correct. In other words, it can be identified that a user who can be identified by the common identification information requested the service.
  • the guaranteed service request output unit 312 reads the use request and the first guarantee temporarily stored in a memory or the like, generates a guaranteed service request, accesses the communication interface, and transmits it. This can be realized by a program module.
  • the second determination server 306 includes a second association holding unit 313, a usage history holding unit 314, a service request receiving unit with guarantee 315, and a usage history acquisition unit 316. Such second judgment support
  • the CPU 306 loads one or more programs into memory on a computer to which a CPU, memory, hard disk, input / output interface, and communication interface are connected via a bus, and executes them on the CPU.
  • the hard disk, input / output interface, and communication This can be achieved by providing access to the interface.
  • the “second association holding unit” 313 holds the common identification information of the user and the second electronic device identification information in association with each other.
  • the description of the first association holding unit 309 can be applied mutatis mutandis.
  • the second determination server 306 makes a second determination as to whether the second electronic device 304 can receive the second service from the second service server group 302 based on the second electronic device identification information. This determination process is performed by providing the second service server group 302 with the service by transmitting the second electronic device identification information, which is information for the second electronic device 304 to identify itself, to the second determination server. Made to do.
  • "Usage history holding unit" 314 holds the usage history of the second service provided to the user identified by the common identification information in association with the common identification information.
  • the usage history is maintained using a table comprising a column for storing common identification information and a column for storing the type and attribute of the second service.
  • Such a table is stored in a hard disk or the like, and the usage history holding unit 314 can be realized by a program module that manages the stored table.
  • “Guaranteed service request reception unit” 315 receives a guaranteed service request. Service requests with guarantees are generated based on the first guarantee and can be said to be highly reliable. Therefore, the second determination server 306 provides the service according to the received service request when it is confirmed that the usage history held in the usage history holding unit 314 exists. If the first guarantee output from the identification management server 307 includes a signature from the identification management server 307, the second determination server 306 decrypts the signature using the public key of the identification management server 307. The contents such as the signature may be confirmed. Further, the second determination server may search the second association holding unit using the common identification information included in the received service request with proof as a key. This search makes it possible to determine whether the user identified by the common identification information is registered in the second determination server.
  • the guaranteed service request receiving unit 315 can be realized by a program module that accesses the communication interface, receives the guaranteed service request, and temporarily stores it in a memory or the like.
  • “Usage history acquisition unit” 316 stores the usage history held in usage history holding unit 314 in association with the common identification information included in the guaranteed service request reception unit 315. get. For example, by performing a search using the common identification information as a key for a table composed of a column storing common identification information and a column storing the type and attribute of the second service, the common identification information is identified. Whether the user has received the service provided by the second service server group 302, the type of service that has been received, or the service indicated by the service request with guarantee. It can be distinguished whether there is.
  • the second determination server determines whether to generate or not generate the second determination according to these distinctions, and when generating the second determination, transmits the generated second determination to the second service server group, and Permit the provision of services to the device 303.
  • the second determination generated here may include the acquired usage history.
  • the mode of service provision can be changed in the second service server group 302, and the value of service provision can be changed.
  • the service is provided via the first determination server 305, and for users who have received the service for the second time or more, the first electronic Provide service to device 303.
  • the first determination server 305 can know what service is provided to the first electronic device 303.
  • the price can be reduced according to the number of services provided.
  • the second determination server 306 can determine that the content of the guaranteed service request is authentic by ensuring that the user identified by the common identification information exists uniquely. .
  • the reason for this is as follows.
  • the second determination server 306 uses the second electronic device identification information in order to identify an electronic device that can provide a service on a regular basis.
  • the second electronic device identification information is used for generating and outputting the second determination. Therefore, the second determination server 306 can trust the electronic device having the second electronic device identification information. In principle, other electronic devices are not trusted.
  • the common identification information and the second electronic device identification information are associated with each other.
  • the meaning of the association with the common identification information is, for example, that the user of the electronic device identified by the certain second electronic device identification information is the same as the user identified by the certain common identification information. It is.
  • the second determination server determines that the request It can be determined that the request is from a user of the electronic device identified by the child device identification information.
  • the identification management server enables the common identification information to uniquely identify the user.
  • the usage history acquisition unit 316 can be realized by a module of a program that makes a search request to the module that implements the usage history holding unit 314 and stores the search result in a memory or the like. is there. By reading the stored search result and passing it to the module of the program that generates and transmits the second determination, the service is provided to the first electronic device 303 by the second service server group 302 or the like.
  • the identification management server 307 includes an identification management unit 308, an identification management unit search unit 317, and a guarantee output unit 318.
  • Such an identification management server 307 loads one or a plurality of programs into a memory on a computer having a CPU, memory, hard disk, input / output interface, and communication interface connected by a bus, and executes them on the CPU. This can be achieved by accessing the hard disk, input / output interface, and communication interface.
  • Identity management unit 308 manages common identification information for uniquely identifying a user in the system. Common identification information is managed by pre-registration by users identified by it. Thereafter, the force S assumed to be given to the first determination server 305 and the second determination server 306 is assumed. There can be various routes that the common identification information is given to the first determination server 305 and the second determination server 306, and is not limited to one. Absent. In addition, this common identification information ensures that the user's identification information power required to use two or more services is unique.
  • the identification management unit 308 can be realized by, for example, a database management module that stores a table storing common identification information in a node disk or the like and manages it as a database or the like.
  • Identity management unit search unit 317 searches identification management unit 308 based on the first assurance request output from first determination server 305. The common identification information included in the first assurance request is extracted, and a search is performed to determine whether common identification information that matches or matches this common identification information is managed by the identification management unit 308.
  • the identification management unit search unit 317 accesses the communication interface, receives the first guarantee request, temporarily stores it in a memory, etc., extracts common identification information, and stores it in the database management module. This can be realized by a program module that performs a search and temporarily stores the search result in a memory or the like.
  • the “guarantee output unit” 318 outputs the first guarantee based on the search result in the identification management unit search unit 317.
  • the first guarantee is output only when matching or matching common identification information is obtained in the search in the identification management unit search unit 317. In other cases, error information indicating that common identification information could not be obtained may be output.
  • the output destination of the first guarantee is the first determination server 305. Further, the first guarantee output to the first determination server 305 may be encrypted with the secret key of the identification management server 307 or may be signed.
  • the guarantee output unit reads the first guarantee request and the search result stored in the memory etc., generates the first guarantee, stores it in the memory, etc., and accesses the communication interface for transmission. realizable.
  • FIG. 4 is a diagram illustrating a specific example of processing in the system according to the first embodiment.
  • A is given as common identification information to the user 401, and this user 401 has a first power of phOl.
  • the first electronic device 403 identified by the child device identification information, the second electronic device 406 identified by ph02, and the second electronic device identification information are used.
  • the first electronic device 403 is used in the first vertical integrated model including the first determination server 402 and the first service server group 404
  • the second electronic device 406 is the second determination server 405, the second service It is assumed that it is used in the second vertical integration model configured by the server group 407.
  • the identification management unit 308 of the identification management server 408 manages the common identification information A. Further, A and phOl are held in association with each other in the first association holding unit 309 of the first determination server 402.
  • the second association holding unit 313 of the second judgment server 405 holds A and ph02 in association with each other.
  • the second determination server The usage history holding unit 314 of 05 holds the XXX associated with A and the usage history of YYY associated with A as well.
  • the user 401 transmits a request for using XXX to the first determination server 402 in order to receive the provision of the service XXX using the first electronic device 403 (1 ).
  • the first determination server 402 transmits a first guarantee request, which is a guarantee request for the uniqueness of A, from the first guarantee request output unit 310 (2).
  • the identification management server 08 searches the identification management unit 308 by the identification management unit search unit 317, and outputs the first guarantee that is the guarantee of the uniqueness of A by the guarantee output unit 318 (3). .
  • the first determination server 402 receives the first guarantee at the first guarantee receiving unit 311 and outputs the guaranteed service request including the guarantee of uniqueness of A and the use request of XXX by the service request output unit 312 with guarantee. (Four).
  • the second determination server 405 receives the guaranteed service request at the guaranteed service request receiving unit 315
  • the second determination server 405 confirms the guarantee of the uniqueness of A, and searches the usage history of A held in the usage history holding unit 314. After confirming that the usage history of XXX by A exists, the second determination is output to the second service server group 407, and the provision of XXX is executed to the first electronic device 403 (5).
  • FIG. 5 is a diagram illustrating another specific example of processing in the system according to the first embodiment.
  • the first vertical integration model is configured by the fixed server 502, the first electronic device 503, and the service providing server 504 of the AAA hotel as the first service server group.
  • the second vertical integration model is configured by the second determination server 505, the second electronic device 506, and the service providing server 507 of the XXX hotel as the second service server group.
  • the first electronic device 503 and the second electronic device 506 are used by a user 501 given A as common identification information.
  • the first electronic device 503 and the second electronic device 506 are directly or indirectly loaned to the user 501 by the operator of the first vertical integration model and the operator of the second vertical integration model, respectively. It is assumed that the product has been transferred. “Indirectly lent or transferred” means, for example, that an operator who lent or transferred electronic equipment was interposed between the operator and the user!
  • the user 501 uses the second determination of the second determination server 505 by using the second electronic device 506, thereby using the service providing server 507 of the XXX hotel (reservation of the XXX hotel accommodation) Etc.) 5 times. Then, as illustrated in FIG. 6, the use history holding unit 314 of the second determination server 505 holds the use history that the A-power XX hotel has been used five times.
  • AAA hotel and the XXX hotel operators are generally different operators, but they are in partnerships, capital relationships, etc., depending on the number of times the XXX hotel is used. Suppose that special offers such as hotel hotel discounts are being offered.
  • the user 501 uses the first electronic device 503 to make a AAA hotel reservation or the like using the AAA hotel service providing server 504, the user 501 Using the first electronic device 503, a request to use the campaign is transmitted to the AAA hotel service providing server 504 (1).
  • the use request of the campaign is transmitted through the screen of the first electronic device 503 illustrated in FIG.
  • the AAA hotel service providing server 504 Upon receiving the use request, the AAA hotel service providing server 504 sends the XXX hotel use count request as a use request to the first determination server 502 in order to inquire about the use count of A's XXX hotel (2 ).
  • the first determination server 502 uses the common identification information A
  • the uniqueness guarantee is requested to the identification management server 508 as the first guarantee request (3), and the identification management server 508 returns the uniqueness guarantee of A as the first guarantee (4).
  • the first determination server 502 When the first determination server 502 receives the first guarantee, the first determination server 502 transmits a guarantee of uniqueness of A and a request for the number of times to use XXX hotels as a service request with guarantee (5).
  • the second determination server 505 verifies the guarantee of the uniqueness of A, searches the usage history of A's XXX hotel held in the usage history holding unit, and determines the number of times as 5 times. When it gets, it sends a reply to the AAA server service provision server 504.
  • the AAA hotel service providing server 504 can determine the contents of the campaign applicable to the user 501 who uses the first electronic device 503, for example, as illustrated in FIG. 7B. Information constituting the screen is sent back to the first electronic device 503, and the user 501 can obtain an electronic coupon for a discount such as accommodation.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and based on the usage history of the second service server group, By making it possible to provide services to the first electronic devices owned by users, one electronic device is bound to one vertical integrated model! You can break through the walls.
  • a system composed of a plurality of vertically integrated models including a service server group, an electronic device, and an identification management server will be described.
  • the identification management unit that has received the first guarantee request output from the first determination server searches for the identification management unit.
  • the guarantee is output based on the search result, and the usage history of the second service is returned to the first electronic device based on the guarantee.
  • the returned usage history is, for example, simply browsing the usage history of the second service on the first electronic device, or selecting a service that exists in the usage history after browsing, and selecting the service of the selected service.
  • FIG. 8 is a diagram for explaining the outline of the second embodiment.
  • the first vertical integration model includes a first service server group 801, a first determination server 806, and a first electronic device 804.
  • the second vertical integration model includes a second service server group 802, a second determination server 807, and a second electronic device 805.
  • the first electronic device 804 and the second electronic device 805 are used by the same user 803.
  • an identification management server 808 that can be accessed in common from the first vertical integration model and the second vertical integration is provided.
  • this identification management server 808 common identification information “aoi” given to the user 803 is managed, and this identification information is held by the first determination server 806 and the second determination server 807.
  • the first electronic device 804 and the second electronic device 805 usually receive a determination such as authentication by the first determination server 806 and the second determination server 807, respectively, and based on the determination, the first service Service is provided from the server group 801 and the second service server group 802. For example, you can receive various services such as browsing the Internet, downloading contents, and playing.
  • the user registers common identification information with the identification management server in advance to receive the service. Thereafter, the user registers the common identification information in the first determination server and the second determination server.
  • a history request is sent (1).
  • the usage history request may be transmitted via the first service server group 801.
  • the first determination server 806 transmits a first assurance request including identification information (for example, “aoi”) based on the use request (2).
  • identification information for example, “aoi”
  • the identification management server 808 searches for identification information included in the first assurance request output from the first determination server 806, and outputs the first assurance based on the search result (3).
  • the first determination server 806 outputs a usage history search request including common identification information based on the first guarantee (4).
  • the second determination server 807 receives the usage history search request, confirms the guarantee therein, and returns the usage history of the service of the user identified by the common identification information. (5) Also, when confirming the warranty, whether or not the common identification information and the identification information of the second electronic device 805 are associated with each other and managed by the second determination server 807 based on the service request with guarantee! Confirmation will come to be done.
  • FIG. 9 shows an example of the usage history displayed on the screen of the first electronic device 804 as a result of the usage history being returned.
  • the user 803 downloaded the content UUU from the service provider XXX at 14:05 on December 1, 2005 (for example, downloaded it to the second electronic device 805). Is displayed. By selecting this line or the like, the user 80 3 can download the UUU to the first electronic device 804 according to the first embodiment already described and the third and fifth embodiments described later. .
  • FIG. 10 illustrates a functional block diagram of the system according to the first embodiment.
  • the system according to this embodiment includes a first service server group 1001, a second service server group 1002, a first electronic device 1003, a second electronic device 1004, a first determination server 1005, and a second determination server.
  • the identification management server 1007 has at least an identification management unit 1008.
  • First service server group 1001 provides the first service to first electronic device 1003 based on the first determination. Therefore, it corresponds to the first service server group 301 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • “Second service server group” 1002 provides the second service to second electronic device 1004 based on the second determination. Therefore, it corresponds to the second service server group 302 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • First electronic device 1003 is an electronic device that is used by a user and receives the first service exclusively from the first service server group 1001. Therefore, it corresponds to the first electronic device 303 in Embodiment 1, and the description thereof can be applied mutatis mutandis. (Embodiment 2: Configuration: second electronic device)
  • the “second electronic device” 1004 is an electronic device that is used by a user who uses the first electronic device 1003 and receives the second service exclusively from the second service server group 1002. Therefore, it corresponds to the second electronic device 304 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the first determination server 1005 is a server that performs the first determination based on the first electronic device identification information so that the first electronic device 1003 receives the first service from the first service server group 1001. Therefore, it corresponds to the first determination server 305 in the first embodiment, and the description thereof can be applied approximately. However, there are differences in configuration.
  • the first determination server 1005 includes a first association holding unit 1009, a first warranty request output unit 1010, a first warranty reception unit 1011, a usage history search request output unit 1012, and a usage history reception unit 10 13 have.
  • First association holding unit 1009 holds the common identification information of the user and the first electronic device identification information in association with each other. Therefore, it corresponds to the first related holding unit 309 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the “First Guarantee Request Output Unit” 1010 outputs a first guarantee request.
  • the “first assurance request” is information requesting the identification management server 1007 to guarantee that the common identification information exists uniquely. Therefore, the user's common identification information is included in the first assurance request.
  • the common identification information of the user can be obtained by searching the first association holding unit 1009 using the first electronic device identification information.
  • the first guarantee request in this embodiment is a request from the first electronic device 1003, and is output based on the request for the use history of the second service of the user.
  • the usage history means that the user uses the first electronic device 1003 and / or the second electronic device 1004 to cause the second determination server 1006 to make a second determination and receive a service provided by the second service server group. It is a history of things. For example, as illustrated in Fig. 9, a history that a user has been provided with a service called UUU content download.
  • “First Guarantee Reception Unit” 1011 receives the first guarantee returned from the identification management server 1007 in response to the first guarantee request output from the first guarantee request output unit 1010. Gatsutsu Thus, it corresponds to the first proof receiving unit 311 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • “Usage history search request output unit” 1012 outputs a usage history search request including common identification information based on the first guarantee received by first guarantee receiving unit 1011.
  • “Usage history search request” is information representing a usage history search request associated with the common identification information included in the usage history and held by the second determination server! Here,! /, Usage history is the history of services provided to the user identified by the common identification information by the second service server group 1002.
  • the required history is not necessarily all, for example, the history within the last week, the history of a service provided by a specific service provider, or the history of a specific service. Good.
  • the usage history search request output unit 101 2 refers to the first guarantee stored in the memory, etc., generates a usage history search request, stores it in the memory, etc., accesses the communication interface, and transmits it. This can be realized by a module.
  • “Usage history receiving unit” 1013 receives the usage history returned in response to the usage history search request output from usage history search request output unit 1012. The received usage history is transmitted to the first electronic device 1003, for example.
  • the usage history receiving unit 1013 can be realized by a module of a program that accesses the communication interface, receives the usage history, and stores it in a memory or the like.
  • the second determination server 1006 is a server that second determines the second electronic device 1004 based on the second electronic device identification information in order to receive the second service from the second service server group 1002. Therefore, it corresponds to the second determination server 306 in Embodiment 1, and the description can be applied mutatis mutandis. However, there are differences in configuration.
  • the second determination server 1006 includes a second association holding unit 1014, a usage history holding unit 1015, a usage history search request receiving unit 1016, and a usage history reply unit 1017.
  • “Second association holding unit” 1014 holds the common identification information of the user and the second electronic device identification information in association with each other.
  • the description of the first related holding unit 1009 can be applied mutatis mutandis.
  • "Usage history holding unit" 1015 is a second service provided to the user identified by the common identification information.
  • a service history is stored in association with the common identification information.
  • the usage history is maintained using a table comprising a column for storing common identification information and a column for storing the type and attribute of the second service. Therefore, it corresponds to the usage history holding unit 314 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Use History Search Request Receiving Unit” 1016 receives a use history search request.
  • the usage history search request is generated based on the first guarantee and can be said to be highly reliable. Therefore, even if the second determination server searches the usage history held in the usage history holding unit based on the received usage history search request and sends a reply, does the occurrence of problems such as invasion of privacy occur? It can be said that it does not occur.
  • the usage history search request receiving unit 1016 can be realized by a program module that accesses a communication interface, receives a usage history search request, and stores it in a memory or the like.
  • the second judgment server 1006 uses the public key of the identity management server 1007 to sign May be decrypted and the contents such as the signature may be confirmed. Further, the second determination server 1006 may search the second association holding unit using the common identification information included in the received use history search request as a key, as in the first embodiment.
  • “Usage history reply unit” 1017 is a usage history held in usage history holding unit 1015 in association with the common identification information included in the usage history search request received by usage history search request receiving unit 1016. Reply with search results for.
  • the usage history search is performed by, for example, the usage history reply unit 1017 and the usage history search request reception unit 1016. Users who are identified by the common identification information by performing a search using the common identification information as a key for a table consisting of a column that stores the common identification information and a column that stores the type and attributes of the second service. The history of receiving the service provided by the second service server group 1002 is searched.
  • the usage history reply unit 1017 reads the usage history search request stored in the memory or the like, confirms the first guarantee, searches the usage history holding unit 1015, and stores the search result in the memory or the like. It can be realized by a program module that accesses the communication interface and returns the usage history. [0116] Note that, as described in Embodiment 1, the second determination server 1006 ensures that the content of the usage history search request is assured that the user identified by the common identification information uniquely exists. It can be judged that it is genuine.
  • the identification management server 1007 includes an identification management unit 1008, an identification management unit search unit 1018, and a guarantee output unit 1019.
  • Identity management unit 1008 manages common identification information for uniquely identifying a user in the system. Therefore, it corresponds to the identification management unit 308 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • Identity management unit search unit 1018 searches the identification management unit 1008 based on the first assurance request output by the first determination server. Therefore, it corresponds to the identification management unit search unit 317 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • Warranty output unit 1019 outputs the first warranty based on the search result in the identification management unit search unit 1018. Therefore, it corresponds to the guarantee output unit 318 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • FIG. 11 is a diagram illustrating a specific example of processing in the system according to the second embodiment.
  • A is given as common identification information to the user 1101, and this user 1101 has the first electronic device 1103 identified by the first electronic device identification information phOl and the second electronic device identification ph02. It is assumed that the second electronic device 1106 identified by the information is used.
  • the first electronic device 1103 is used in the first vertical integrated model including the first determination server 1102 and the first service server group 1104, and the second electronic device 1106 is the second determination server 1105, the second It is assumed that it is used in the second vertical integration model composed of the service server group 1107.
  • the identification management server Since the user 1101 is given the common identification information A, the identification management server
  • the identification management unit 1008 1108 manages the common identification information A. Further, A and phOl are held in association with each other in the first association holding unit 1009 of the first judgment server 1102. In the second association holding unit 1014 of the second determination server 1105, A and ph02 are held in association with each other. [0125] Here, if the user 1101 uses the second electronic device 1106 to use the service identified by XXX and YYY in the second vertical integrated model, the second judgment service is used.
  • the usage history holding unit 1015 of the bar 1105 holds the usage history of XXX associated with A and the YYY associated with A as well.
  • the user 1101 uses the first electronic device 1103 to transmit a service usage history request in the second vertical integration model to the first determination server 1102 (1 ).
  • the first determination server 1102 transmits a first guarantee request, which is a guarantee request for uniqueness of A, from the first guarantee request output unit 1010 (2).
  • the ID management server 1108 searches the ID management unit 1008 by the ID management unit search unit 1018, and outputs the first guarantee that is the guarantee of uniqueness of A by the guarantee output unit 1019 (3).
  • the first determination server 1102 receives the first guarantee at the first guarantee receiving unit 1011 and uses the first guarantee to use the usage history search request output unit 1012 to check the usage history including the uniqueness guarantee of A.
  • the second determination server 1105 confirms the guarantee of the uniqueness of A, searches the usage history of A held in the usage history holding unit 1015, Get the usage history of XXX and YYY and reply (5). Thereafter, the usage history is transferred to the first electronic device 1103, and the first electronic device 1103 can browse the usage history.
  • FIG. 12 is a diagram illustrating another specific example of processing in the system according to the second embodiment.
  • the first vertical integration model is configured by the first determination server 1202, the first electronic device 1203, and the AAA hotel service providing server 1204 as the first service server group.
  • the second vertical integration model is configured by the second determination server 1205, the second electronic device 1206, and the second service server group including the XXX hotel service providing server 1207 and the YYY hotel service providing server 1208.
  • first electronic device 1203 and second electronic device 1206 are used by user 1201 to whom A is given as common identification information.
  • the first electronic device 1203 and the second electronic device 1206 are loaned directly or indirectly to the user 1201 by the operator of the first vertical integration model and the operator of the second vertical integration model, respectively.
  • the user 1201 uses the second electronic device 1206 and uses the second determination of the second determination server 1205 to use the service providing server 1207 of the XXX hotel (reservation of XXX hotel accommodation). Etc.) 5 times, and YYY hotel service server 1208 is used 8 times.
  • the usage history holding unit 1015 of the second determination server 1205 holds the usage history that A used the XXX hotel 5 times and the YYY hotel 8 times. It will be.
  • AAA hotels XXX hotels
  • YYY hotels are generally different business operators, but there are, for example, partnerships and capital relationships, and XXX hotels and / or YYY hotels.
  • special offers such as AAA hotel discounts are offered according to the number of uses.
  • the user 1201 uses the first electronic device 1203 to make a AAA hotel reservation using the AAA hotel service provision server 1204, the user 1201 becomes the XXX hotel.
  • a request for use of the campaign is sent to the AAA hotel service provision server 1204 using the first electronic device 1203 (1).
  • the campaign use request is transmitted through the screen of the first electronic device 1203 illustrated in FIG. 7A (however, “XXX hotel” may not be displayed on the screen).
  • the AAA hotel service provision server 1204 that has received the use request sends a request for the use history of the hotel to the first determination server 1202 in order to inquire the number of times of use of the XXX hotel, YYY hotel, and other hotels of A. Send (2).
  • the first determination server 1202 requests the identity management server 1209 to guarantee the uniqueness of the common identification information A as the first assurance request (3), and the identity management server 1209 responds to the uniqueness of A.
  • the warranty is returned as the first warranty (4).
  • the first determination server 1202 Upon receiving the first guarantee, the first determination server 1202 transmits A's uniqueness guarantee and hotel use count request as a use history search request (5).
  • the second determination server 1205 verifies the guarantee of the uniqueness of A, and then searches the usage history of the hotel of A held in the usage history holding unit. YYY Hotelnore, when it obtains 8 IJ histories, replies to the AAA hotel service provision server 1204 (6).
  • the AAA hotel service providing server 1204 can determine the contents of a campaign applicable to the user 1201 who uses the first electronic device 1203. For example, information constituting the screen as illustrated in FIG.
  • ⁇ IJ user 1201 displays XXX hotels and YYY hotels as campaign target hotels by displaying a pull-down menu or the like. Yes, know that each use is 5 times and 8 times, select from XXX hotels and YYY hotels (you can choose both), get coupons for discounts etc. be able to.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and the usage history of the second service server group is searched. This makes it possible to provide services selected from the usage history to the first electronic device, thereby breaking the current situation that one electronic device is bound by one vertical integrated model. Can break through the walls.
  • a system composed of a plurality of vertically integrated models composed of a service server group, an electronic device, and an identification management server will be described.
  • the identification management server based on a request for use of the second determination server from the first electronic device, the identification management server that has received the service request with proof request output from the first determination server searches for the identification management unit.
  • the service request with proof is output to the second determination server based on the search result.
  • FIG. 15 is a diagram for explaining the outline of the third embodiment. Two vertical integration models are shown.
  • the first vertically integrated model includes a first service server group 1501, a first determination server 1506, and a first electronic device 1504.
  • the second vertically integrated model includes a second service server group 1502, a second determination server 1507, and a second electronic device 1505.
  • the first electronic device 1504 and the second electronic device 1505 are used by the same user 15 03.
  • an identification management server 1508 is provided that can access both the first vertical integration model and the second vertical integration in common.
  • This identification management server 1508 manages the common identification information “aoi” given to the user 1503. .
  • This common identification information is held by the first determination server 1506 and the second determination server 1507.
  • the first electronic device 1504 and the second electronic device 1505 normally receive a determination such as authentication by the first determination server 1506 and the second determination server 1507, respectively, and based on the determination, the first service Service is received from server group 1501 and second service server group 1502. For example, it is possible to receive various services such as browsing the Internet, downloading and playing content.
  • the user registers common identification information with the identification management server. Thereafter, the user registers the common identification information in the first determination sano and the second determination server.
  • a request to use the second service server is sent from the first electronic device 1504 to the first determination server 1506. (1).
  • the usage request may be transmitted via the first service server group 201.
  • the first determination server 1506 transmits a service request with proof request including identification information (for example, “aoi”) to the identification management server 1508 based on the use request (2). This transmission is performed by the identification management server 1508 to ensure that the identification information is unique among a plurality of vertical integration models and to transfer the service request to the second determination server.
  • the identification management server 1508 searches for identification information included in the service request with proof request output from the first determination server 1506, and outputs a second service request with proof based on the search result (3). This output is sent to the second determination server 1507.
  • the second determination server receives the second service request with proof, it confirms the guarantee in the service request and provides the service according to the service request.
  • the second determination server 1507 can perform processing such as charging for the user 1503 according to the provision of the service.
  • FIG. 16 illustrates a functional block diagram of the system according to the third embodiment.
  • the first service server group 1601, the second service server group 1602, the first electronic device 1603, the second electronic device 1604, the first determination server 1605, and the second determination server 1606 are identified.
  • the identification management server 1607 includes at least an identification management unit 1608.
  • First service server group 1601 provides the first service to first electronic device 1603 based on the first determination. Therefore, it corresponds to the first service server group 301 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • the “second service server group” 1602 provides the second electronic device 1604 with the second service based on the second determination. Therefore, it corresponds to the second service server group 302 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • the “first electronic device” 1603 is an electronic device that is used by the user and receives the first service exclusively from the first service server group 1601. Therefore, it corresponds to the first electronic device 303 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • “Second electronic device” 1604 is an electronic device that is used by a user who uses the first electronic device 1603 to receive the second service exclusively from the second service server group 1602. Therefore, it corresponds to the second electronic device 304 in Embodiment 1, and the description can be applied mutatis mutandis.
  • the first determination server 1605 is a server that performs the first determination based on the first electronic device identification information in order for the first electronic device 303 to receive the first service from the first service server group 301. . Therefore, it corresponds to the first determination server 305 in the first embodiment, and the description can be applied almost mutatis mutandis, but the internal configuration is different.
  • the first determination server 1605 includes a first association holding unit 1610 and a service request output unit with warranty request 1609.
  • First association holding unit 1610 includes common identification information of the user, first electronic device identification information, Associating and holding. Therefore, it corresponds to the first related holding unit 309 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • “Service Request Output with Warranty Request” 1609 outputs a service request with warranty request.
  • “Service request with warranty request” means that the identification management server 307 is requested to guarantee that the common identification information exists uniquely, and the request for resistance and service resistance is sent to the second judgment server 1606. Information indicating a request to transfer. Therefore, the service request with warranty request includes the common identification information of the user.
  • information for identifying the second determination server 1606, such as an IP address is generally included. This IP address is included in the usage request from the first electronic device 1603, for example.
  • the second determination server 1606 may be determined for each user of the first electronic device 1603. The common identification information of the user can be obtained by searching the first association holding unit 1610 with the first electronic device identification information.
  • the first warranty request is a usage request from the first electronic device 1603 and is output based on the usage request to which the right should be given based on the usage history of the second service of the user.
  • the use request means that the first electronic device 1603 mainly requests the second determination server 1606 to make a determination and receive a service provided by the second service server group or the like. Further, it may indicate that the service is provided from the second determination server 1606.
  • the first electronic device 1603 cannot unconditionally receive the service provided by the second service server group 1602 or the like, and the user uses the second electronic device 1604 or the like, for example, at least once. Service server group 1602 needs to receive service.
  • the presence of such a condition means “a usage request that should be given the right based on the usage history of the user's second service”.
  • the service request output unit 1609 with warranty request accesses the communication interface, receives the usage request, searches the first association holding unit 1610 as necessary to obtain common identification information, and receives the warranty request.
  • a service request is generated and stored in a memory etc. This can be realized by a module of a program that accesses and transmits the source.
  • the first electronic device 1603 uses the second determination service 1603 to request that the first electronic device 1603 pay the usage fee for the first service through the second determination service 1606. May be sent. Originally, the first electronic device 1603 was able to receive services only in the vertical integration model of the first service. The point that service can be provided is the same as in the first embodiment.
  • the second determination server 1606 makes a second determination as to whether or not the second electronic device 1604 can receive the second service from the second service server group 1602 based on the second electronic device identification information.
  • the points are the same as in the first embodiment. However, there are differences in configuration.
  • the second determination server 1606 includes a second association holding unit 1611, a usage history holding unit 1612, a second service request receiving unit with proof 1616, and a usage history acquisition unit 1614.
  • “Second association holding unit” 1611 holds the common identification information of the user and the second electronic device identification information in association with each other. Therefore, it corresponds to the second related holding part 313 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Usage history holding unit” 1612 holds the usage history of the second service provided to the user identified by the common identification information in association with the common identification information. Therefore, it corresponds to the usage history holding unit 314 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Second-guaranteed service request receiving unit” 1613 receives a second-guaranteed service request.
  • the second service request with proof is generated by the identification management server 1607 based on the service request with proof request and can be said to have high reliability. Therefore, the second determination server 1606 provides a service according to the received second guaranteed service request when it is confirmed that the usage history held in the usage history holding unit 1612 exists.
  • the second determination server 306 uses the public key of the identification management server 307 to sign the signature, etc. It is the same as in the first embodiment that the contents of the signature etc. may be confirmed by decrypting.
  • the second guaranteed service request receiving unit can be realized by a module of a program that accesses the communication interface, receives the second guaranteed service request, and stores it in a memory or the like.
  • the “usage history acquisition unit” 1614 is stored in the usage history holding unit 1612 in association with the common identification information included in the second guaranteed service request reception unit 1613. Get usage history. Therefore, it corresponds to the usage history acquisition unit 316 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the identification management server 1607 includes an identification management unit 1608, a service request with warranty request receiving unit 1615, an identification management unit search unit 1616, and a second service request output unit with proof 1616.
  • Such an identification management server 1607 loads one or a plurality of programs into a memory, which is executed by the CPU, on a computer having a CPU, memory, hard disk, input / output interface, and communication interface connected by a bus. This can be realized by accessing the I / O interface and communication interface.
  • Identity Manager 1608 manages common identification information for uniquely identifying a user in the system. Therefore, it corresponds to the identification management unit 308 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Service request reception unit with warranty request” 1615 receives the service request with warranty request output from the first determination server 1605.
  • it can be realized by a module of a program that accesses a communication interface, receives a service request with a guarantee request, and stores it in a memory or the like.
  • “Identification management unit search unit” 1616 searches the identification management unit 1608 using the common identification information as a key based on the service request with warranty request received by the service request receiving unit 1615 with warranty request.
  • the common identification information included in the service request with a guarantee request is extracted, and a search is performed to determine whether common identification information that matches or matches the common identification information is managed by the identification management unit 1608.
  • the identification management unit search unit 1616 reads the service request with proof stored in the memory, etc., extracts the common identification information, searches the table managed by the identification management unit 1608, and the result of the search Module for storing programs in memory etc. It can be realized by
  • “Second-guaranteed service request output unit” 1617 outputs a second-guaranteed service request based on the search result in the identification management unit search unit 1616. If common identification information that uniquely matches or matches is obtained by a search in the identification management unit search unit 1616, it can be assured that a user identified by the common identification information exists uniquely. As a search result, common identification information must exist uniquely.
  • the service request with the second guarantee is output only when common identification information that matches or matches is obtained by the search in the identification management unit search unit 1616. In other cases, error information indicating that common identification information could not be obtained may be output.
  • the output destination of the service request with the second guarantee is the second judgment servo 1606.
  • the second determination server 1606 may be specified by second determination server identification information that is information for identifying the second determination server 1606 included in the service request with proof request. Further, when the second determination server 1606 is determined for each common identification information, it may be specified based on the common identification information.
  • the first guarantee output to the first determination server 305 may be encrypted with the private key of the identification management server 307 or may be signed.
  • the service request output unit with second guarantee 1617 reads the service request with guarantee request stored in the memory or the like, the search result of the identification management unit search unit 1616, and generates a second service request with guarantee. It can be realized by a module of a program that is stored in a memory or the like, and accesses and transmits a communication interface.
  • FIG. 17 is a diagram illustrating a specific example of processing in the system according to the third embodiment. It is assumed that A is given as common identification information to user 1701, and this user 1701 is identified by the first electronic device 1703 identified by the first electronic device identification information phOl and the second electronic device identification ph02. It is assumed that the second electronic device 1706 identified by the information is used.
  • the first electronic device 17 03 is used in the first vertical integrated model including the first determination server 1702 and the first service server group 1704, and the second electronic device 1706 is the second determination server 1705, the second Suppose that it is used in the second vertical integration model consisting of service servers 1707.
  • the identification management server In the identification management unit 1608 of 1708 common identification information A is managed. Further, A and phOl are held in association with each other in the first relation holding unit 1610 of the first determination server 1702. A and ph02 are held in association with each other in the second association holding unit 1611 of the second determination server 1705.
  • the second judgment service is used.
  • the usage history holding unit 1612 of the bar 1705 the usage history of XXX associated with A and the usage history of YYY also associated with A are held.
  • the user 1701 transmits a use request for XXX to the first determination server 1702 in order to receive the service of XXX using the first electronic device 1703 ( 1). Then, the first determination server 1702 transmits a guarantee request with uniqueness for A and a service request with guarantee request, which is a request for the second service, by the service request output with guarantee request 1609 (2).
  • This service request with a guarantee request may include identification information of the second determination server.
  • the identification management server 1708 receives the service request with warranty request from the service request reception unit with warranty request 1615, searches the identification management unit 1608 with the identification management unit search unit 1616, and receives the second service with warranty.
  • the request output unit 1617 outputs the guarantee of the uniqueness of A and the usage request for XXX (3).
  • the second determination server 1705 receives the second guaranteed service request at the second guaranteed service request receiving unit 1613, confirms the guarantee of the uniqueness of A, and uses the usage history of A held in the usage history holding unit. After searching and confirming that the usage history of X XX by A exists, the second determination is output to the second service server group 1707, and the provision of XXX is executed to the first electronic device 1703 ( Four).
  • FIG. 18 is a diagram showing another specific example of processing in the system according to the third embodiment.
  • the first vertical integration model is configured by the first determination server 1802, the first electronic device 1803, and the AAA hotel service providing server 1804 as the first service server group.
  • the second vertical integration model is configured by the second determination server 1805, the second electronic device 1806, and the service providing server 1807 of the XXX hotel as the second service server group.
  • the first electronic device 1803 and the second electronic device 1806 are common identification information.
  • A is used by a given user 1801.
  • the first electronic device 1803 and the second electronic device 1806 are loaned directly or indirectly to the user 1801 by the operator of the first vertical integrated model and the operator of the second vertical integrated model, respectively. It is assumed that it has been transferred.
  • the user 1801 uses the second electronic device 1806 and uses the second determination of the second determination server 1805 to use the service providing server 1807 of the XXX hotel (reservation of XXX hotel accommodation). Etc.) 5 times. Then, as illustrated in FIG. 6, the usage history holding unit 1612 of the second determination server 1805 holds a usage history that indicates that the A force XX hotel has been used five times!
  • AAA hotel and the XXX hotel operators are generally different businesses, but they are in partnerships, capital relationships, etc., depending on the number of times the XXX hotel is used. Suppose that special offers such as hotel hotel discounts are being offered.
  • the user 1801 uses the first electronic device 1803 to make a AAA hotel reservation or the like using the AAA hotel service providing server 1804, the user 1801 becomes the XXX hotel.
  • the first electronic device 1803 is used to send a campaign use request to the AAA hotel service providing server 1804 (1).
  • a campaign use request is transmitted through the screen of the first electronic device 1803 illustrated in FIG.
  • the AAA hotel service provision server 1804 that has received the use request transmits the use request of the XXX hotel as a use request to the first determination server 1802 in order to inquire about the use count of the XXX hotel of A (2 ).
  • the first determination server 1802 provides a request for guaranteeing the uniqueness of the common identification information A, a request for inquiring the number of times the XXX hotel has been used by the second determination server 1805, and the identification information of the second determination server 1805.
  • the request is sent to the ID management server 1808 as a request (3).
  • the ID management server 1808 guarantees the uniqueness of A, and the second judgment server 1805 (4).
  • the second determination server 1805 verifies the guarantee of the uniqueness of A and the verification ends normally. Then, the usage history holding unit 1612 is searched for the usage count of the XXX hotel of A, and the usage history acquisition unit 1614 obtains the result “5 times” and returns it to the service providing server 1804.
  • the AAA hotel service provision server 1804 can determine the contents of the campaign applicable to the user 1801 who uses the first electronic device 1803. For example, FIG. 7 (B) The information constituting the screen as illustrated in FIG. 6 is returned to the first electronic device 1803, and the user 1801 can obtain a coupon for a discount such as accommodation.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and based on the usage history of the second service server group, By making it possible to provide services to the first electronic devices owned by users, one electronic device is bound to one vertical integrated model! You can break through the walls.
  • a system composed of a plurality of vertically integrated models composed of a service server group, an electronic device, and an identification management server will be described.
  • the identification management server that has received the usage request with proof request output from the first determination server searches the identification management unit. Based on the search result, a second usage history request with proof is output to the second determination server, and the usage history of the second service is returned to the first electronic device.
  • the returned usage history is, for example, simply browsing the usage history of the second service on the first electronic device, specifying the service after browsing, and providing the specified service in Embodiments 1 and 3, Used in the first electronic device as in the fifth embodiment to be described later.
  • FIG. 19 is a diagram for explaining the outline of the fourth embodiment.
  • the first vertical integration model includes a first service server group 1901, a first determination server 1906, and a first electronic device 1904.
  • the second vertically integrated model includes a second service server group 1902, a second determination server 1907, and a second electronic device 1905.
  • the first electronic device 1904 and the second electronic device 1905 are the same user 19 Used by 03.
  • an identification management server 1908 is provided that can access both the first vertical integration model and the second vertical integration in common.
  • the identification management server 1908 manages common identification information “aoi” given to the user 1903, and the common identification information is held by the first determination server 1906 and the second determination server 1907.
  • the first electronic device 1904 and the second electronic device 1905 usually receive a determination such as authentication by the first determination server 1906 and the second determination server 1907, respectively, and based on the determination, the first service Service is received from server group 1901 and second service server group 1902. For example, it is possible to receive various services such as browsing the Internet, downloading and playing content.
  • the user registers common identification information in the identification management server 1908 in order to receive the service. Thereafter, the user registers the common identification information in the first determination server 1906 and the second determination server 1907.
  • the usage history held by the second service server or the like from the first electronic device 1904 to the first determination server 1906 Request is sent (1).
  • the usage history request may be transmitted via the first service server group 1901.
  • the first determination server 1 906 transmits a usage history request with guarantee request including identification information (for example, “aoi”) (2).
  • This transmission is performed by the identification management server 1908 to ensure that the identification information is unique among a plurality of vertically integrated models.
  • the identification management server 1908 searches for the identification information included in the first guarantee request output by the first determination server 1906, and outputs a second guaranteed use history request based on the search result (3).
  • the second determination server 1907 receives the second guaranteed use history request, confirms the guarantee in the request, and returns the use history of the service of the user identified by the common identification information (4) . Also, when confirming the warranty, whether or not the common identification information and the identification information of the second electronic device 1905 are associated and managed by the second determination server 1907 based on the second usage history request with warranty. Confirmation has been made! /
  • FIG. 20 illustrates a functional block diagram of the system according to the fourth embodiment.
  • the system according to this embodiment includes a first service server group 2001, a second service server group 2002, a first electronic device 2003, a second electronic device 2004, a first determination server 2005, and a second determination server.
  • the identification management server 2007 includes at least an identification management unit 2008.
  • First service server group 2001 provides the first service to the first electronic device 2003 based on the first determination. Therefore, it corresponds to the first service server group 301 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • “Second service server group” 2002 provides the second service to the second electronic device 2004 based on the second determination. Therefore, it corresponds to the second service server group 302 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • First electronic device 2003 is an electronic device that is used by a user and exclusively receives the first service from the first service server group 2001. Therefore, it corresponds to the first electronic device 303 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • “Second Electronic Device” 2004 is an electronic device that is used by a user who uses the first electronic device 2003 and exclusively receives the second service from the second service server group 2002. Therefore, it corresponds to the second electronic device 304 in Embodiment 1, and the description can be applied mutatis mutandis.
  • the first determination server 2005 is a server that performs the first determination based on the first electronic device identification information so that the first electronic device 2003 receives the first service from the first service server group 2001. Therefore, it corresponds to the first determination server 305 in the first embodiment, and the description thereof can be almost applied. However, there are differences in configuration.
  • the first judgment server 2005 and the first relation holding unit 2009 and the use history request with guarantee request It has a power unit 2010 and a usage history receiving unit 2011.
  • “First Association Holding Unit” 2009 holds the user common identification information and the first electronic device identification information in association with each other. Therefore, it corresponds to the first related holding unit 309 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Use history request output unit with warranty request” 2010 outputs a use history request with warranty request.
  • “Usage history request with warranty request” refers to requesting the identity management server 2007 to guarantee that the common identification information exists uniquely, and requesting the usage history to the second judgment server. Is information. Therefore, the usage history request with warranty request includes the common identification information of the user. Further, identification information such as the address of the second determination server 2006 may be included. The common identification information of the user can be obtained by searching the first related holding unit 2009 using the first electronic device identification information.
  • the usage history request with guarantee request in the present embodiment is a request from the first electronic device 2003, and is output based on the usage history request of the second service of the user.
  • the usage history means that the user uses the first electronic device 2003 or / and the second electronic device 2004 to make the second determination server 2006 make the second determination and receive the service provided by the second service server group.
  • This is a history of things. For example, as shown in Fig. 9, a user's ability is a history of downloading and receiving UUU content and receiving a service.
  • Usage history request output unit with warranty request 2010 accesses the communication interface, receives the usage request, stores it in a memory, etc., and also uses the first electronic device identification information as a key for the first related This can be realized by a program module that searches the holding unit 2009 to obtain common identification information, generates a usage history request with a guarantee request, stores it in a memory, etc., accesses the communication interface, and transmits it.
  • Usage history receiving unit 2011 receives the usage history returned in response to the usage history request with warranty request output from the usage history request output unit with warranty request 2010.
  • the received usage history may be transmitted to the first electronic device 2003, for example.
  • the usage history receiving unit 2011 can be realized by a program module that accesses a communication interface, receives a usage history, and stores it in a memory or the like.
  • the second determination server 2006 makes a second determination as to whether or not the second electronic device 2004 can receive the second service from the second service server group 2002.
  • the point is the same as in Embodiment 1, and the description can be applied mutatis mutandis. However, there are differences in configuration.
  • the second determination server 2006 includes a second relation holding unit 2012, a usage history holding unit 2013, a second guaranteed usage history request receiving unit 2014, and a usage history reply unit 2015.
  • “Second association holding unit” 2012 holds the common identification information of the user and the second electronic device identification information in association with each other.
  • the second related holding part 2012 is the power that applies the explanation of the first related holding part 2009.
  • “Usage history holding unit” 2013 holds the usage history of the second service provided to the user identified by the common identification information in association with the common identification information.
  • the usage history is maintained using a table comprising a column for storing common identification information and a column for storing the type and attribute of the second service.
  • the description of the usage history holding unit 314 in the first embodiment can be applied mutatis mutandis.
  • the second-guaranteed usage history request receiving unit 2014 can be realized by a program module that accesses the communication interface, receives the second-guaranteed usage history request, and stores it in a memory or the like.
  • the second proof-of-use history request output from the identity management server 2007 includes a signature from the identity management server 2007, the second judgment server 2006 releases the identity management server 2007. It is also possible to decrypt the signature etc. with a key etc. and confirm the contents of the signature etc.! / Score etc. are the same as in the second embodiment.
  • “Usage history reply unit” 2015 is used in the usage history holding unit 2013 in association with the common identification information included in the second guaranteed usage history request receiving unit 2014. Returns the search result of the usage history that is retained.
  • the usage history is searched by, for example, the usage history reply unit 2015 or the second guaranteed usage history request reception unit 2014.
  • the common identification information as a key for a table consisting of a column that stores the common identification information and a column that stores the type and attributes of the second service
  • users identified by the common identification information Received services provided by the second service server group 2002 Search the history of things. Therefore, the description of the usage history reply unit 1017 in the second embodiment can be applied to the usage history reply unit 2015.
  • the second determination server 2006 can determine that the contents of the usage history search request are authentic.
  • the identification management server 2007 includes an identification management unit 2008 and a usage history request receiving unit with warranty request.
  • the identification management part search part 2017, and the usage history request output part 2018 with the second guarantee corresponds to the identification management server 307 in the first embodiment, and the description S can be applied. However, there are differences in configuration.
  • Identity Manager 2008 manages common identification information that uniquely identifies a user in the system. Therefore, it corresponds to the identification management unit 308 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • “Use History Request with Guarantee Request Reception Unit” 2016 receives the use history request with guarantee request output from the first determination server 2005.
  • the usage history request receiving unit with warranty request 2016 can be realized as a program module that accesses the communication interface, receives the usage history request with warranty request, and stores it in a memory or the like.
  • Identity management unit search unit 2017 searches the identification management unit 2008 based on the usage history request with warranty request received by the usage history request reception unit with warranty request. Therefore, it corresponds to the identification management unit search unit 317 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • FIG. 21 is a diagram illustrating a specific example of processing in the system according to the fourth embodiment.
  • A is given as common identification information to the user 2101, and this user 2101 has the first electronic device 2103 identified by the first electronic device identification information phOl and the second electronic device identification ph02. It is assumed that the second electronic device 2106 identified by the information is used.
  • First electronic equipment 21 03 is used in the first vertical integrated model including the first determination server 2102 and the first service server group 2104, and the second electronic device 2106 includes the second determination server 2105 and the second service server group 2107. Is used in the second vertically integrated model.
  • the identification management server Since the common identification information A is given to the user 2101, the identification management server
  • the common identification information A is managed.
  • a and phOl are held in association with each other in the first association holding unit 2009 of the first determination servo 2102.
  • a and ph02 are held in association with each other.
  • the second determination service is used.
  • the usage history holding unit 2013 of the bar 2105 the usage history of XXX associated with A and the YYY associated with A are also retained.
  • the user 2101 uses the first electronic device 2103 to transmit a service usage history request in the second vertical integration model to the first determination server 2102 (1 ). Then, the first determination server 2102 transmits a use history request with guarantee request, which is a guarantee request for uniqueness of A and a request for use history, by the use history request output unit with guarantee request 2010 (2).
  • the usage history request with warranty request may include the identification information of the second determination server 2105.
  • the identification management server 2108 receives the usage history request with warranty request 2016 from the usage history request reception unit with warranty request 2016, searches the identification management unit 2008 using the identification management unit search unit 2017,
  • the guaranteed usage history request output unit 2018 outputs a second guaranteed usage history request that is a guarantee of the uniqueness of A and a usage history request (3).
  • the second determination server 2105 confirms the guarantee of the uniqueness of A, and the A stored in the usage history holding unit 2013 Search the usage history of, get the usage history of XXX and YYY, and reply (4). Thereafter, when the usage history is transferred to the first electronic device 2103, the first electronic device 2103 can be browsed.
  • FIG. 22 is a diagram showing another specific example of processing in the system according to the fourth embodiment.
  • the first vertical integration model is configured by the first determination server 2202, the first electronic device 2203, and the AAA hotel service providing server 2204 as the first service server group.
  • the second vertical integration model is configured by the second determination server 2205, the second electronic device 2206, and the second service server group as the service providing server 2207 of the XXX hotel and the service providing server 2208 of the YYY hotel.
  • first electronic device 2203 and second electronic device 2206 are used by user 2201 to whom A is given as common identification information.
  • the first electronic device 2203 and the second electronic device 2206 are loaned directly or indirectly to the user 2201 by the operator of the first vertical integration model and the operator of the second vertical integration model, respectively. Suppose that it has been transferred.
  • the user 2201 uses the second electronic device 2206 and uses the second determination of the second determination server 2205 to use the service providing server 2207 of the XXX hotel (reservation of XXX hotel accommodation). Etc.) 5 times, and YYY hotel service server 2208 is used 8 times. Then, as illustrated in FIG. 13, the usage history holding unit 2013 of the second determination server 2205 holds the usage history that A used the XXX hotel 5 times and the YYY hotel 8 times. It will be.
  • AAA hotels XXX hotels
  • YYY hotels are generally different business operators, but there are partnerships, capital relationships, etc., for example, XXX hotels and / or YYY hotels.
  • special offers such as AAA hotel discounts are offered according to the number of uses.
  • a request to use the campaign is sent to AAA Hotel Service Providing Server 2204 using the first electronic device 2203 (1).
  • a campaign use request is transmitted through the screen of the first electronic device 12 03 illustrated in FIG. 7 (A) (note that “XXX Hotel” is not displayed on the screen! / ⁇ ).
  • the AAA hotel service provision server 2204 that has received the usage request is A XXX hotel
  • a hotel usage history request is sent to the first judgment server 2202 (2).
  • the first determination server 2202 makes a request to the identification management server 2 209 as a request for the guarantee of the uniqueness of the common identification information and the hotel usage history (3).
  • the server 2209 guarantees the uniqueness of A and forwards the hotel usage history request to the second determination server 2205 (4).
  • the second determination server 2205 verifies the guarantee of the uniqueness of A, and so on, searches the usage history of the hotel of A /! When the usage history of 5 times for XXX hotels and 8 times for YYY hotels is obtained, it is sent back to the service provider server 2004 of AAA hotels (5).
  • the AAA hotel service providing server 2204 can determine the contents of the campaign applicable to the user 2201 who uses the first electronic device 2203. For example, information constituting the screen as illustrated in FIG. 14 is returned to the first electronic device 2203, and ⁇ IJ user 2201 displays XXX hotels and YYY hotels as campaign target hotels by displaying a pull-down menu or the like. Yes, know that each use is 5 times and 8 times and choose between XXX Hotel and YYY Hotel! / (You can choose both XXX Hotel and YYY Hotel), You can get coupons for discounts such as lodging
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and the usage history of the second service server group is searched. This makes it possible to provide services selected from the usage history to the first electronic device, thereby breaking the current situation that one electronic device is bound by one vertical integrated model. Can break through the walls.
  • a system composed of a plurality of vertically integrated models composed of a service server group, an electronic device, and an identification management server will be described.
  • the second determination server that has received the first service request from the first determination server based on the use request for the second determination server from the first electronic device sends the second guarantee request to the identification management server.
  • the identification management server searches the identification management unit and outputs a guarantee based on the search result.
  • FIG. 23 is a diagram for explaining the outline of the fifth embodiment. Two vertical integration models are shown.
  • the first vertically integrated model includes a first service server group 2301, a first determination server 2306, and a first electronic device 2304.
  • the second vertically integrated model includes a second service server group 2302, a second determination server 2307, and a second electronic device 2305.
  • the first electronic device 2304 and the second electronic device 2305 are used by the same user 23 03.
  • an identification management server 2308 is provided that can access both the first vertical integration model and the second vertical integration in common.
  • the identification management server 2308 manages the common identification information “aoi” given to the user 2303, and the common identification information is held by the first determination server 2306 and the second determination server 2307.
  • the first electronic device 2304 and the second electronic device 2305 normally receive a determination such as authentication by the first determination server 2306 and the second determination server 2307, respectively, and based on the determination, the first service Service is received from server group 2301 and second service server group 2302. For example, it is possible to receive various services such as browsing the Internet, downloading and playing content.
  • the user registers common identification information with the identification management server. Thereafter, the user registers the common identification information in the first determination sano and the second determination server.
  • a request for using the second service server is transmitted from the first electronic device 2304 to the first determination server 2306. (1).
  • the usage request may be transmitted via the first service server group 2301.
  • the first determination server 2306 transmits a first service request including identification information (for example, “aoi”) to the second determination server 2307 based on the use request (2).
  • the second determination server 2307 receives the first service request, it outputs a second assurance request including identification information to the identification management server based on this (3). This output is performed by the identification management server 2308 to ensure that the identification information is unique among a plurality of vertically integrated models.
  • the identification management server 23 08 searches for the identification information included in the second assurance request output by the second determination server 2307. And output the second guarantee based on the search result (4). This output is sent to the second determination server 2307.
  • the second determination server 2307 receives the second guarantee
  • the second guarantee server 2307 confirms the guarantee and provides the service according to the first service request. To do.
  • the second determination server 2307 can perform processing such as charging for the user 2303 in accordance with the provision of the service.
  • FIG. 24 illustrates a functional block diagram of the system according to the fifth embodiment.
  • the system according to the present embodiment includes a first service server group 2401, a second service server group 2402, a first electronic device 2403, a second electronic device 2404, a first determination server 2405, and a second determination server.
  • the identification management server 2407 has at least an identification management unit 2408.
  • First service server group 2401 provides the first service to the first electronic device 2403 based on the first determination. Therefore, it corresponds to the first service server group 301 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • the "second service server group" 2402 provides the second service to the second electronic device 2404 based on the second determination. Therefore, it corresponds to the second service server group 302 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • First electronic device 2403 is an electronic device that is used by the user and receives the first service exclusively from the first service server group 2401. Therefore, it corresponds to the first electronic device 303 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the “second electronic device” 2404 is an electronic device that is used by a user who uses the first electronic device 2403 and exclusively receives the second service from the second service server group 2402. did Therefore, it corresponds to the second electronic device 304 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the first determination server 2405 is a server that performs the first determination based on the first electronic device identification information so that the first electronic device 2403 receives the first service from the first service server group 2401. Therefore, it corresponds to the first determination server 305 in the first embodiment, and the description can be applied mutatis mutandis, but there are differences in the internal configuration.
  • the first determination server 2405 includes a first association holding unit 2409 and a first service request output unit 24 10.
  • First association holding unit 2409 associates and holds the common identification information of the user and the first electronic device identification information. Therefore, it corresponds to the first related holding unit 309 in Embodiment 1, and the description can be applied mutatis mutandis.
  • the “First Service Request Output Unit” 2410 outputs a first service request.
  • the “first service request” is information for requesting a service to the second determination server 2406.
  • the first service request includes common identification information of the user of the first electronic device 2403.
  • information indicating which service is requested may be included.
  • the common identification information of the user can be obtained by searching the first association holding unit 2409 using the first electronic device identification information.
  • the first service request is a usage request from the first electronic device 2403, and is output based on the usage request to which the title should be given based on the usage history of the second service of the user.
  • the usage request means that the first electronic device 2403 mainly requests the second determination server 2406 to make a determination and to receive a service provided by the second service server group or the like. Further, it may indicate that the second determination server 2406 requests to receive service.
  • the first electronic device 2403 cannot unconditionally receive the service provided by the second service server group 2402 or the like, and the user uses the second electronic device 2404 or the like to at least once. It is necessary to receive services from the server group 2402.
  • Such a condition means “a usage request to which a right should be given based on the usage history of the second service of the user”. By providing such a condition, the second determination server 2406 can be used by the second service server group 2402. Even if it is permitted to provide services to the first electronic device 2403, the users of the first electronic device 2403 and the second electronic device 2404 are the same, so the user should be charged for payment. There are advantages such as being able to.
  • the first service request output unit 2410 accesses the communication interface, receives the use request, stores it in the memory, etc., and searches the first association holding unit 2409 using the first electronic device identification information as a key.
  • This can be realized by a program module that obtains user identification information, generates a first service request, stores it in a memory, etc., accesses the communication interface, and transmits the first service request.
  • the usage request by the first electronic device 2403 may be transmitted by the first electronic device 2403 to request payment of the usage fee for the first service via the second determination server 2406.
  • the first electronic device 2403 was able to receive the service only in the vertical integration model of the first service. This is the same as in Embodiment 1 in that it can be provided with the service.
  • the second determination server 2406 makes a second determination as to whether or not the second electronic device 2404 can receive the second service from the second service server group 2402 based on the second electronic device identification information.
  • the points and the like are the same as in Embodiment 1, and the description can be applied mutatis mutandis. However, there are differences in configuration.
  • the second determination server 2406 includes a second relation holding unit 2411, a service request receiving unit 2412, a second warranty request output unit 2413, a second warranty receiving unit 2414, a usage history holding unit 2415, A history acquisition unit 2416.
  • “Second association holding unit” 2411 holds the common identification information of the user and the second electronic device identification information in association with each other. Therefore, it corresponds to the second related holding part 313 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Service Request Reception Unit” 2412 receives the first service request output from the first determination server 2405.
  • the received first service request usually includes a guarantee that the user identified by the common identification information exists uniquely! /, NA! /. Will not be able to provide services.
  • the service request receiving unit 2412 can be realized by a program module that accesses a communication interface, receives a service request, and stores it in a memory or the like.
  • “Second warranty request output unit” 2413 outputs a second warranty request including common identification information based on the first service request received by the service request receiving unit 2412.
  • the second assurance request is output to obtain from the identification management server 2407 a guarantee that the user identified by the common identification information exists uniquely.
  • the common identification information included in the first service request is extracted, included in the second assurance request, and output to the identification management server.
  • the second assurance request includes the common identification information as described above, but also includes information for identifying the first determination server.
  • the second warranty request output unit 2413 reads the service request stored in the memory or the like by the service request receiving unit 2412, extracts the identification information, generates a second warranty request, and stores it in the memory or the like. This can be realized by a module of a program that accesses and transmits the communication interface.
  • the “second proof receiving unit” 2414 receives the second proof output from the identification management server 2407 based on the second proof request output from the second proof request output unit 2413. Processing in the identification management server 2407 will be described later.
  • the second guarantee is information that guarantees that the user identified by the common identification information exists uniquely.
  • the second guarantee may be, for example, information obtained by signing using the secret key of the identification management server 2407.
  • the second determination server 2406 uses the public key of the identification management server 2407. The signature is confirmed by using it.
  • the second proof receiving unit 2414 can be realized by a program module that accesses the communication interface, receives the second proof, stores it in a memory or the like, and performs processing.
  • “Usage history holding unit” 2415 holds the usage history of the second service provided to the user identified by the common identification information in association with the common identification information. Therefore, it corresponds to the usage history holding unit 314 in Embodiment 1, and the description can be applied mutatis mutandis.
  • "Usage history acquisition unit" 2416 is associated with the common identification information included in the second guarantee received by the second guarantee receiving unit 2414 and is retained in the use history holding unit 2415 To get. Therefore, it corresponds to the usage history acquisition unit 316 in Embodiment 1, and the description can be applied mutatis mutandis.
  • the identification management server 2407 includes an identification management unit 2408, an identification management unit search unit 2417, and a second assurance output unit 2418. Therefore, it corresponds to the identification management server 307 in the first embodiment.
  • Identity management unit 2408 manages common identification information for uniquely identifying a user in the system. Therefore, it corresponds to the identification management unit 308 in Embodiment 1, and the description can be applied mutatis mutandis.
  • Identity management unit search unit 2417 searches the identification management unit 2408 using the common identification information as a key based on the second assurance request output by the second determination server.
  • the common identification information included in the service request with warranty request is extracted, and a search is performed to determine whether the common identification information that matches or matches the common identification information is managed by the identification management unit 2408. Therefore, the description of the identification management unit search unit 317 in Embodiment 1 can be applied mutatis mutandis.
  • “Second Guarantee Output Unit” 2418 outputs the second guarantee based on the search result in the identification management unit search unit 2417. If common identification information that uniquely matches or matches is obtained by the search in the identification management unit search unit 2417, it can be guaranteed that the user identified by the common identification information exists uniquely. As a search result, it is necessary that the common identification information exists uniquely.
  • the service request with the second guarantee is output only when common identification information that matches or matches is obtained by the search in the identification management unit search unit 2417. In other cases, error information indicating that common identification information could not be obtained may be output.
  • the output destination of the second guarantee is the second determination server 2406.
  • the second guarantee may be encrypted with the secret key of the identification management server 2407, or may be signed, as with the guarantee output unit 318 of the first embodiment.
  • FIG. 25 is a diagram illustrating a specific example of processing in the system according to the fifth embodiment.
  • A is given as common identification information to the user 2501, and this user 2501 has the first electronic device 2503 identified by the first electronic device identification information phOl, ph02, and the second electronic device.
  • the second electronic device 2506 identified by the device identification information is used.
  • the first electronic device 25 03 is used in the first vertical integrated model including the first determination server 2502 and the first service server group 2504, and the second electronic device 2506 is the second determination server 2505, the second Suppose that it is used in the second vertical integration model composed of service servers 2507.
  • the identification management server Since the common identification information A is given to the user 2501, the identification management server
  • the common identification information A is managed. Further, A and phOl are held in association with each other in the first association holding unit 2409 of the first determination server 2502. In the second association holding unit 2411 of the second determination server 2505, A and ph02 are held in association with each other.
  • the second judgment service is used.
  • the usage history holding unit 2415 of the bar 2505 holds the usage history of XXX associated with A and the YYY associated with A as well.
  • the user 2501 transmits a request for using XXX to the first determination server 2502 in order to receive the service of XXX using the first electronic device 2503 ( 1).
  • the first determination server 2502 transmits a second service request, which is a request for the second service, by the first service request output unit 2410 (2).
  • the second determination server 2505 receives the first service request by the first service request receiving unit 2412 and, based on the first service request, sends a second guarantee request that is a guarantee request for uniqueness of A. Output to the identification management server 2508 (3).
  • the identification management server 2508 Upon receiving the second warranty request, the identification management server 2508 extracts the common identification information contained therein, searches the identification management unit 2408 using the identification management unit search unit 2417, and uses the second warranty output unit 2418 to The second guarantee, which is a guarantee of uniqueness, is output (4).
  • the second determination server 2505 receives the second guarantee at the second guarantee receiving unit 2414, confirms the guarantee of the uniqueness of A, searches the usage history of A held in the usage history holding unit 2415, and After confirming that the usage history of XXX exists, the second determination is output to the second service server group 2402, and the provision of XXX is executed by the first electronic device 2 503 (5).
  • FIG. 26 is a diagram showing another specific example of processing in the system according to the fifth embodiment.
  • the first vertical integration model is configured by the first determination server 2602, the first electronic device 2603, and the AAA hotel service providing server 2604 as the first service server group.
  • a second vertical integration model is configured by the second determination server 2605, the second electronic device 2606, and the service providing server 2607 of the XXX hotel as the second service server group.
  • the first electronic device 2603 and the second electronic device 2606 are used by a user 2601 given A as common identification information.
  • the first electronic device 2603 and the second electronic device 2606 are loaned directly or indirectly to the user 2601 by the operator of the first vertical integration model and the operator of the second vertical integration model, respectively. It is assumed that it has been transferred.
  • the user 2601 uses the second electronic device 2606 and uses the second determination of the second determination server 2605 to use the service providing server 2607 of the XXX hotel (reservation of XXX hotel accommodation). Etc.) 5 times. Then, as illustrated in FIG. 6, the usage history holding unit of the second determination server 2605 holds the usage history that the A power XX hotel has been used five times.
  • AAA hotel and the XXX hotel operators are generally different operators, but they are in partnerships, capital relationships, etc., depending on the number of times the XXX hotel is used. Suppose that special offers such as hotel hotel discounts are being offered.
  • the AAA hotel service provision server 2604 Upon receiving the use request, the AAA hotel service provision server 2604 sends the XXX hotel use count request as a use request to the first determination server 2602 to inquire about the use count of A's XXX hotel (2 ).
  • the first determination server 2602 is the second determination server 2605
  • the request for the number of times to use XXX hotels at is output to the second judgment servo 2605 as the first service request (3).
  • the second determination server outputs a second guarantee request to the identification management server 2608 in order to obtain the guarantee of the uniqueness of the identification information A included in the first service request (4).
  • the identification management server 2608 guarantees the uniqueness of A and outputs it as the second guarantee (5).
  • the second determination server 2605 verifies the guarantee of the uniqueness of A, and when the verification is completed normally, the usage history acquisition unit 2416 searches the usage history holding unit 2415 for the usage count of the XXX hotel of A. The result “5 times” is returned to the service providing server 2604.
  • the AAA hotel service providing server 2604 can determine the contents of the campaign applicable to the user 2601 who uses the first electronic device 2603. For example, information constituting the screen as illustrated in FIG. 7B is returned to the first electronic device 2603, and the user 2601 can obtain a coupon for a discount such as accommodation.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and based on the usage history of the second service server group, By making it possible to provide services to the first electronic devices owned by users, one electronic device is bound to one vertical integrated model! You can break through the walls.
  • a system composed of a plurality of vertically integrated models composed of a service server group, an electronic device, and an identification management server will be described.
  • the second determination server that has received the first usage history request from the first determination server based on the usage request for the second determination server from the first electronic device sends the second guarantee request to the identification management server.
  • the ID management server searches the ID management unit, outputs the second guarantee based on the search result, and uses the second service based on the second guarantee.
  • the history is returned to the first electronic device.
  • the returned usage history is, for example, simply browsing the usage history of the second service on the first electronic device, or selecting the service from the history after browsing and providing the selected service in the first embodiment.
  • the first electronic machine like 3, 5 It is used for receiving with a vessel.
  • FIG. 27 is a diagram for explaining the outline of the sixth embodiment. Two vertical integration models are shown.
  • the first vertically integrated model includes a first service server group 2701, a first determination server 2706, and a first electronic device 2704.
  • the second vertical integration model includes a second service server group 2702, a second determination server 2707, and a second electronic device 2705.
  • the first electronic device 2704 and the second electronic device 2705 are used by the same user 27 03.
  • an identification management server 2708 is provided which can access both the first vertical integration model and the second vertical integration in common.
  • the identification management server 2708 manages common identification information “aoi” given to the user 2703, and the common identification information is held by the first determination server 2706 and the second determination server 2707.
  • the first electronic device 2704 and the second electronic device 2705 normally receive a determination such as authentication by the first determination server 2706 and the second determination server 2707, respectively, and based on the determination, the first service
  • the service is received from the server group 2701 and the second service server group 2702. For example, it is possible to receive various services such as browsing the Internet, downloading and playing content.
  • the user registers common identification information in the identification management server 2708 in order to receive the service. Thereafter, the user registers the common identification information in the first determination server 2706 and the second determination server 2707.
  • the usage history held by the second service server or the like from the first electronic device 2704 to the first determination server 2706 Request is sent (1).
  • the usage history request may be transmitted via the first service server group 2701.
  • the first determination server 2 706 outputs a first usage history request including identification information (for example, “aoi”) based on the usage request (2).
  • the second determination server 2707 receives the first usage history request, it outputs a second assurance request including common identification information to the identification management server 2708 based on this (3). This output is performed by the identification management server 2708 to ensure that the identification information is unique among a plurality of vertically integrated models.
  • the identification management server 2708 searches for the common identification information included in the first assurance request output by the second determination server 2707, and outputs the second assurance based on the search result (4). Second judgment
  • the server 2707 receives the second guarantee, confirms the guarantee, and returns the use history of the service of the user identified by the common identification information (5). Also, when confirming the warranty, based on the second warranty, it is checked whether the common identification information and the identification information of the second electronic device 2705 are associated with each other and managed by the second determination server 2707. You may be able to do so.
  • the usage history is received by the first electronic device 2704 and the first electronic device 2704 is displayed as shown in FIG.
  • FIG. 28 illustrates a functional block diagram of a system according to the sixth embodiment.
  • the system according to the present embodiment includes a first service server group 2801, a second service server group 2802, a first electronic device 2803, a second electronic device 2804, a first determination server 2805, and a second determination server.
  • the identification management server 2807 includes at least an identification management unit 2808.
  • First service server group 2801 provides the first service to the first electronic device 2803 based on the first determination. Therefore, it corresponds to the first service server group 301 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • the “second service server group” 2802 provides the second service to the second electronic device 2804 based on the second determination. Therefore, it corresponds to the second service server group 302 in the first embodiment, and the description thereof can be applied mutatis mutandis.
  • First electronic device 2803 is an electronic device that is used by a user and receives the first service exclusively from the first service server group 2801. Therefore, it corresponds to the first electronic device 303 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the “second electronic device” 2804 is an electronic device that is used by a user who uses the first electronic device 2803 and receives the second service exclusively from the second service server group 2802. did Therefore, it corresponds to the second electronic device 304 in Embodiment 1, and the description thereof can be applied mutatis mutandis.
  • the first determination server 2805 is a server that performs the first determination based on the first electronic device identification information in order for the first electronic device 2803 to receive the first service from the first service server group 2801. Therefore, it corresponds to the first determination server 305 in the first embodiment, and there is a difference in the force S and configuration in which the description can be applied approximately.
  • the first determination server 2805 includes a first association holding unit 2809, a first usage history request output unit 2810, and a usage history reception unit 2811.
  • First association holding unit 2809 holds the common identification information of the user and the first electronic device identification information in association with each other. Therefore, it corresponds to the first related holding unit 309 in Embodiment 1, and the description can be applied mutatis mutandis.
  • the “First Usage History Request Output Unit” 2810 outputs a usage history request with a guarantee request.
  • the “first usage history request” is information indicating that the identification management server 2807 requests a usage history from the second determination server. Therefore, the user's common identification information is included in the first usage history request.
  • the common identification information of the user can be obtained by searching the first association holding unit 2809 with the first electronic device identification information.
  • the first usage history request in this embodiment is a request from the first electronic device 2803, and is output based on the usage history request of the user for the second service.
  • the usage history means that the user uses the first electronic device 2803 and / or the second electronic device 2804 to make the second determination server 2806 make a second determination and receive a service provided by the second service server group or the like. It is a history of things. For example, as shown in Fig. 9, there is a history of receiving a service called UUU for content download.
  • the first usage history request output unit 2810 accesses the communication interface, receives the usage request and stores it in a memory or the like, and uses the first electronic device identification information as a key or the like as a first association holding unit 2809. It can be realized by a program module that obtains the common identification information of the user by searching for, generates the first usage history request, stores it in the memory, etc., accesses the communication interface and transmits it.
  • "Usage history reception unit" 2811 is a guarantee requirement output from the first usage history request output unit 2810 The usage history returned in response to the request usage history request is received. The received usage history is transmitted to the first electronic device 2803, for example. Therefore, the description of the usage history receiving unit 1013 in Embodiment 2 can be applied mutatis mutandis.
  • the second determination server 2806 makes a second determination as to whether or not the second electronic device 2804 can receive the second service from the second service server group 2802 based on the second electronic device identification information.
  • the point is the same as in Embodiment 1, and the description can be applied mutatis mutandis. However, there are differences in configuration.
  • the second determination server 2806 includes a second relation holding unit 2812, a first usage history request receiving unit 2813, a second warranty request output unit 2814, a second warranty receiving unit 2815, and a usage history holding unit. 28 16 and a usage history reply unit 2817.
  • "Second association holding unit" 2812 holds the common identification information of the user and the second electronic device identification information in association with each other.
  • the description of the first related holding portion 2809 can be applied to the second related holding portion 2812.
  • First usage history request receiving unit 2813 receives the first usage history request output by the first determination server 2805.
  • the received first usage history request includes the common identification information of the user of the first electronic device 2803, but since the guarantee of uniqueness has not been obtained, the request cannot yet be satisfied in this state.
  • the first usage history request receiving unit 2813 can be realized by a module of a program that accesses the communication interface, receives the first usage history request, and stores it in a memory or the like.
  • "Second warranty request output unit" 2814 outputs a second warranty request including common identification information based on the first usage history request.
  • the second assurance request is output in order to obtain from the identification management server 2807 a guarantee of the uniqueness of the user identified by the common identification information included in the first usage history request.
  • the second guarantee request may include information for identifying the first determination server 2805 in addition to the power including the common identification information.
  • the second warranty request output unit 2814 extracts the common identification information from the first usage history request stored in the memory or the like, generates a second warranty request and stores it in the memory or the like, and accesses the communication interface. This can be realized by a program module to be transmitted.
  • the “second proof receiving unit” 2815 receives the second proof output from the identification management server 2807 based on the second proof request output from the second proof request output unit 2814.
  • the second guarantee is information that guarantees the uniqueness of the user identified by the common identification information included in the first usage history request.
  • the second guarantee may be, for example, information obtained by signing using the private key of the identification management server 2807.
  • the second determination server 2806 uses the public key of the identification management server 2807. The signature is confirmed using.
  • the second guarantee receiving unit 2815 can be realized by a program module that accesses the communication interface, receives the second guarantee, and stores it in a memory or the like.
  • "Usage history holding unit" 2816 holds the usage history of the second service provided to the user identified by the common identification information in association with the common identification information.
  • the usage history is maintained using a table comprising a column for storing common identification information and a column for storing the type and attribute of the second service. Therefore, the description of the use history holding unit 314 in Embodiment 1 can be applied mutatis mutandis.
  • "Usage history reply unit" 2817 searches for the usage history held in usage history holding unit 2816 in association with the common identification information included in the second guarantee received by second guarantee receiving unit 2815. Reply the result.
  • the usage history search is performed by, for example, the usage history reply unit 2817 and the second proof receiving unit 2815. Users who are identified by the common identification information by performing a search using the common identification information as a key in a table consisting of a column that stores the common identification information and a column that stores the type and attributes of the second service. retrieves the history of receiving the service provided by the second service server group 2802. Therefore, the description of the usage history reply unit 1017 in Embodiment 2 can be applied mutatis mutandis.
  • the second determination server 2806 authenticates the first usage history request by ensuring that the user identified by the common identification information uniquely exists. It can be judged that
  • the identification management server 2807 has an identification management unit 2808, an identification management unit search unit 2818, and a second assurance output unit 2819. Therefore, it corresponds to the identification management server 307 in the first embodiment, and the description can be applied mutatis mutandis. There is a point).
  • Identity management unit 2808 manages common identification information for uniquely identifying a user in the system. Therefore, it corresponds to the identification management unit 308 in Embodiment 1, and the description can be applied mutatis mutandis.
  • Identity management unit search unit 2818 searches the identification management unit 2008 based on the second assurance request output from the second determination server 2806. Therefore, it corresponds to the identification management unit search unit 317 in Embodiment 1, and the description can be applied mutatis mutandis.
  • “Second Guarantee Output Unit” 2819 outputs the second guarantee based on the search result in the identification management unit search unit 2818. Therefore, it corresponds to the guarantee output unit 318 in the first embodiment, and the description can be applied mutatis mutandis.
  • FIG. 29 is a diagram illustrating a specific example of processing in the system according to the sixth embodiment.
  • A is given to the user 29 01 as the common identification information
  • this user 2901 has the first electronic device 2903 identified by the first electronic device identification information phOl, ph02, and the second electronic device.
  • the second electronic device 2906 identified by the device identification information is used.
  • the first electronic device 29 03 is used in the first vertical integrated model including the first determination server 2902 and the first service server group 2904, and the second electronic device 2906 includes the second determination server 2905 and the second determination server 2905.
  • it is used in the second vertical integration model consisting of service servers 2907.
  • the identification management server Since the common identification information A is given to the user 2901, the identification management server
  • the common identification information A is managed.
  • a and phOl are held in association with each other in the first association holding unit 2809 of the first determination server 2902.
  • a and ph02 are held in association with each other.
  • the second determination service is used.
  • the usage history holding unit 2816 of the bar 2905 holds the XXX associated with A and the usage history of YYY associated with A as well.
  • the user 2901 sends a usage history request to the first determination server 2902. (1).
  • the first determination server 2902 uses the first usage history request output unit 2810 to output a first usage history request that is a usage history request including common identification information A (2).
  • the second determination server 2905 receives the first usage history request by the first usage history request receiving unit 2813, and based on the first usage history request, the second determination server 2905 is a request for guaranteeing the uniqueness of A. Two guarantee requests are output to the identification management server 2908 (3).
  • the identification management server 2908 Upon receiving the second warranty request, the identification management server 2908 extracts the common identification information included in the request, searches the identification management unit 2808 by the identification management unit search unit 2818, and searches for the unique identification of A by the second warranty output unit 2819.
  • the second guarantee which is a guarantee of sex, is output (5).
  • the second determination server 2905 receives the second guarantee at the second guarantee receiving unit 2815, confirms the guarantee of the uniqueness of A, and searches the usage history of A held in the usage history holding unit 2816. After confirming that the usage history of XXX and YYY by A exists, XXX and YYY and usage history are returned (5).
  • FIG. 30 is a diagram illustrating another specific example of processing in the system according to the sixth embodiment.
  • the first vertical integration model is configured by the first determination server 3002, the first electronic device 3003, and the AAA hotel service providing server 3004 as the first service server group.
  • the second vertical integration model is configured by the second determination server 3005, the second electronic device 3006, and the second service server group including the XXX hotel service providing server 3007 and the YYY hotel service providing server 3008.
  • the first electronic device 3003 and the second electronic device 3006 are used by a user 3001 to whom A is given as common identification information.
  • the first electronic device 3003 and the second electronic device 3006 are loaned directly or indirectly to the user 3001 by the operator of the first vertical integration model and the operator of the second vertical integration model, respectively. Suppose that it has been transferred.
  • the user 3001 uses the second electronic device 3006 and uses the second determination of the second determination server 3005 to use the service providing server 3007 of the XXX hotel (reservation of XXX hotel accommodation, etc.) ) 5 times and YYY hotel service server 3008 is used 8 times. Then, as illustrated in FIG. 13, the usage history holding unit 2816 of the second determination server 3005 uses A force XX hotel 5 times and YYY hotel 8 times. That is, the usage history is held.
  • AAA hotels the persons who operate AAA hotels, XXX hotels, and YYY hotels are generally different business operators, but there are partnerships, capital relationships, etc., and XXX hotels and / or YYY hotels Suppose that special offers such as AAA hotel discounts are offered according to the number of uses.
  • a request to use the campaign is sent to the AAA hotel service provision server 3004 using the first electronic device 3003 (1).
  • a campaign use request is transmitted through the screen of the first electronic device 12 03 illustrated in FIG. 7 (A) (Note that “XXX Hotel” appears in the screen display of FIG. 7 (A)! It does not need to be displayed! /,).
  • the AAA hotel service provision server 3004 that has received the use request sends a request for the use history of the hotel to the first determination server 3002 in order to inquire the number of times of use of XXX hotels, YYY hotels and other hotels of A. Send (2).
  • the first determination server 3002 outputs a request for the usage history of the hotel A to the second determination server 3005 (3).
  • the second judgment server 30 05 requests the uniqueness assurance request for A from the identification management server 3009 (4), while the identification management server 3009 guarantees the uniqueness of A. And output to the second judgment server 3005 (5).
  • the second determination server 3005 searches the usage history of the hotel of A /! XXX hotel 5 times and YYY hotel 8 times of usage history, reply to AAA hotel service server 30 04.
  • the AAA hotel service providing server 3004 can determine the contents of the campaign applicable to the user 3001 who uses the first electronic device 3003. For example, as illustrated in FIG.
  • the IJ user 3001 has XXX hotels and YYY hotels as campaign target hotels by displaying pull-down menus, etc. The number of times is 5 and 8. Make a choice between XXX Hotel and YYY Hotel! / ⁇ (both XXX Hotel and YYY Hotel may be selected), get coupons for discounts etc. be able to.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and the usage history of the second service server group is searched. This makes it possible to provide services selected from the usage history to the first electronic device, thereby breaking the current situation that one electronic device is bound by one vertical integrated model. Can break through the walls.
  • one user who uses a plurality of electronic devices can be uniquely identified without depending on the electronic device identification information, and based on the usage history of the second service server group.
  • the current situation that one electronic device is bound by one vertical integrated model is overcome, and the barrier of the vertical integrated model is overcome. It is industrially useful.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Social Psychology (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

Le problème à résoudre, dans un modèle d'intégration verticale, est qu'une société fournissant un contenu ou autre ne peut fournir qu'un service par l'intermédiaire d'une société avec laquelle la société fournissant le contenu s'est engagée par contrat et qu'elle ne peut pas fournir un quelconque service par l'intermédiaire d'une autre société, ce qui rend ainsi impossible de fournir largement des services à des utilisateurs. Le moyen de résoudre le problème réside dans un système dans lequel, lorsqu'un utilisateur demande l'utilisation d'un second serveur d'évaluation par l'intermédiaire d'un premier dispositif électronique, et lorsque le droit de l'utilisation est donné en fonction de l'historique d'utilisation d'un second service obtenu par l'utilisateur du premier dispositif électronique, un serveur de gestion d'identification, ayant reçu une demande de garantie fournie en sortie d'un premier serveur d'évaluation, effectue une recherche dans une section de gestion d'identification. En conséquence un utilisateur utilisant des dispositifs électroniques peut être identifié de manière unique indépendamment des informations d'identification du dispositif électronique, et une garantie est fournie si des informations communes d'identification sont gérées.
PCT/JP2007/067266 2006-09-07 2007-09-05 Système pour gérer une identification concernant une authentification d'un dispositif électronique WO2008029828A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2006242530A JP4895190B2 (ja) 2006-09-07 2006-09-07 電子機器の認証に関する識別管理のためのシステム
JP2006-242530 2006-09-07

Publications (1)

Publication Number Publication Date
WO2008029828A1 true WO2008029828A1 (fr) 2008-03-13

Family

ID=39157254

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2007/067266 WO2008029828A1 (fr) 2006-09-07 2007-09-05 Système pour gérer une identification concernant une authentification d'un dispositif électronique

Country Status (2)

Country Link
JP (1) JP4895190B2 (fr)
WO (1) WO2008029828A1 (fr)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9948629B2 (en) 2009-03-25 2018-04-17 The 41St Parameter, Inc. Systems and methods of sharing information through a tag-based consortium
US9990631B2 (en) 2012-11-14 2018-06-05 The 41St Parameter, Inc. Systems and methods of global identification
US10021099B2 (en) 2012-03-22 2018-07-10 The 41st Paramter, Inc. Methods and systems for persistent cross-application mobile device identification
US10091312B1 (en) 2014-10-14 2018-10-02 The 41St Parameter, Inc. Data structures for intelligently resolving deterministic and probabilistic device identifiers to device profiles and/or groups
US10089679B2 (en) 2006-03-31 2018-10-02 The 41St Parameter, Inc. Systems and methods for detection of session tampering and fraud prevention
CN108833384A (zh) * 2018-05-31 2018-11-16 北京奇安信科技有限公司 识别仿冒电子设备的方法和系统
US10417637B2 (en) 2012-08-02 2019-09-17 The 41St Parameter, Inc. Systems and methods for accessing records via derivative locators
US10453066B2 (en) 2003-07-01 2019-10-22 The 41St Parameter, Inc. Keystroke analysis
US10726151B2 (en) 2005-12-16 2020-07-28 The 41St Parameter, Inc. Methods and apparatus for securely displaying digital images
US10902327B1 (en) 2013-08-30 2021-01-26 The 41St Parameter, Inc. System and method for device identification and uniqueness
US10999298B2 (en) 2004-03-02 2021-05-04 The 41St Parameter, Inc. Method and system for identifying users and detecting fraud by use of the internet
US11010468B1 (en) 2012-03-01 2021-05-18 The 41St Parameter, Inc. Methods and systems for fraud containment
US11301585B2 (en) 2005-12-16 2022-04-12 The 41St Parameter, Inc. Methods and apparatus for securely displaying digital images
US11314838B2 (en) 2011-11-15 2022-04-26 Tapad, Inc. System and method for analyzing user device information

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6200549B2 (ja) * 2016-05-26 2017-09-20 ヤフー株式会社 判定装置、判定方法及び判定プログラム

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004086510A (ja) * 2002-08-27 2004-03-18 Wao Corporation コンテンツサービス提供システム、コンテンツサービス用サーバおよび会員用クライアント
JP2005110182A (ja) * 2003-10-02 2005-04-21 Fujitsu Ltd ネットワーク管理システム及び方法
JP2006085719A (ja) * 2004-09-17 2006-03-30 Fujitsu Ltd 設定情報配布装置、認証設定転送装置、方法、プログラム、媒体及び設定情報受信プログラム

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2004086510A (ja) * 2002-08-27 2004-03-18 Wao Corporation コンテンツサービス提供システム、コンテンツサービス用サーバおよび会員用クライアント
JP2005110182A (ja) * 2003-10-02 2005-04-21 Fujitsu Ltd ネットワーク管理システム及び方法
JP2006085719A (ja) * 2004-09-17 2006-03-30 Fujitsu Ltd 設定情報配布装置、認証設定転送装置、方法、プログラム、媒体及び設定情報受信プログラム

Cited By (36)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10453066B2 (en) 2003-07-01 2019-10-22 The 41St Parameter, Inc. Keystroke analysis
US11238456B2 (en) 2003-07-01 2022-02-01 The 41St Parameter, Inc. Keystroke analysis
US10999298B2 (en) 2004-03-02 2021-05-04 The 41St Parameter, Inc. Method and system for identifying users and detecting fraud by use of the internet
US11683326B2 (en) 2004-03-02 2023-06-20 The 41St Parameter, Inc. Method and system for identifying users and detecting fraud by use of the internet
US11301585B2 (en) 2005-12-16 2022-04-12 The 41St Parameter, Inc. Methods and apparatus for securely displaying digital images
US10726151B2 (en) 2005-12-16 2020-07-28 The 41St Parameter, Inc. Methods and apparatus for securely displaying digital images
US10535093B2 (en) 2006-03-31 2020-01-14 The 41St Parameter, Inc. Systems and methods for detection of session tampering and fraud prevention
US10089679B2 (en) 2006-03-31 2018-10-02 The 41St Parameter, Inc. Systems and methods for detection of session tampering and fraud prevention
US11727471B2 (en) 2006-03-31 2023-08-15 The 41St Parameter, Inc. Systems and methods for detection of session tampering and fraud prevention
US11195225B2 (en) 2006-03-31 2021-12-07 The 41St Parameter, Inc. Systems and methods for detection of session tampering and fraud prevention
US9948629B2 (en) 2009-03-25 2018-04-17 The 41St Parameter, Inc. Systems and methods of sharing information through a tag-based consortium
US11750584B2 (en) 2009-03-25 2023-09-05 The 41St Parameter, Inc. Systems and methods of sharing information through a tag-based consortium
US10616201B2 (en) 2009-03-25 2020-04-07 The 41St Parameter, Inc. Systems and methods of sharing information through a tag-based consortium
US11314838B2 (en) 2011-11-15 2022-04-26 Tapad, Inc. System and method for analyzing user device information
US11010468B1 (en) 2012-03-01 2021-05-18 The 41St Parameter, Inc. Methods and systems for fraud containment
US11886575B1 (en) 2012-03-01 2024-01-30 The 41St Parameter, Inc. Methods and systems for fraud containment
US10021099B2 (en) 2012-03-22 2018-07-10 The 41st Paramter, Inc. Methods and systems for persistent cross-application mobile device identification
US10862889B2 (en) 2012-03-22 2020-12-08 The 41St Parameter, Inc. Methods and systems for persistent cross application mobile device identification
US10341344B2 (en) 2012-03-22 2019-07-02 The 41St Parameter, Inc. Methods and systems for persistent cross-application mobile device identification
US11683306B2 (en) 2012-03-22 2023-06-20 The 41St Parameter, Inc. Methods and systems for persistent cross-application mobile device identification
US12002053B2 (en) 2012-08-02 2024-06-04 The 41St Parameter, Inc. Systems and methods for accessing records via derivative locators
US10417637B2 (en) 2012-08-02 2019-09-17 The 41St Parameter, Inc. Systems and methods for accessing records via derivative locators
US11301860B2 (en) 2012-08-02 2022-04-12 The 41St Parameter, Inc. Systems and methods for accessing records via derivative locators
US9990631B2 (en) 2012-11-14 2018-06-05 The 41St Parameter, Inc. Systems and methods of global identification
US10853813B2 (en) 2012-11-14 2020-12-01 The 41St Parameter, Inc. Systems and methods of global identification
US11410179B2 (en) 2012-11-14 2022-08-09 The 41St Parameter, Inc. Systems and methods of global identification
US10395252B2 (en) 2012-11-14 2019-08-27 The 41St Parameter, Inc. Systems and methods of global identification
US11922423B2 (en) 2012-11-14 2024-03-05 The 41St Parameter, Inc. Systems and methods of global identification
US11657299B1 (en) 2013-08-30 2023-05-23 The 41St Parameter, Inc. System and method for device identification and uniqueness
US10902327B1 (en) 2013-08-30 2021-01-26 The 41St Parameter, Inc. System and method for device identification and uniqueness
US11240326B1 (en) 2014-10-14 2022-02-01 The 41St Parameter, Inc. Data structures for intelligently resolving deterministic and probabilistic device identifiers to device profiles and/or groups
US10728350B1 (en) 2014-10-14 2020-07-28 The 41St Parameter, Inc. Data structures for intelligently resolving deterministic and probabilistic device identifiers to device profiles and/or groups
US11895204B1 (en) 2014-10-14 2024-02-06 The 41St Parameter, Inc. Data structures for intelligently resolving deterministic and probabilistic device identifiers to device profiles and/or groups
US10091312B1 (en) 2014-10-14 2018-10-02 The 41St Parameter, Inc. Data structures for intelligently resolving deterministic and probabilistic device identifiers to device profiles and/or groups
CN108833384B (zh) * 2018-05-31 2021-03-12 奇安信科技集团股份有限公司 识别仿冒电子设备的方法和系统
CN108833384A (zh) * 2018-05-31 2018-11-16 北京奇安信科技有限公司 识别仿冒电子设备的方法和系统

Also Published As

Publication number Publication date
JP2008065584A (ja) 2008-03-21
JP4895190B2 (ja) 2012-03-14

Similar Documents

Publication Publication Date Title
JP4895190B2 (ja) 電子機器の認証に関する識別管理のためのシステム
US8589372B2 (en) Method and system for automated document registration with cloud computing
US8341141B2 (en) Method and system for automated document registration
JP4604253B2 (ja) ウェブページ安全性判定システム
EP2249277B1 (fr) Dispositif d'authentification, procédé d'authentification et programme d'authentification doté dudit procédé
US8914351B2 (en) Method and system for secure automated document registration from social media networks
WO2018037453A1 (fr) Système d'authentification et support d'enregistrement d'informations
JP2008015936A (ja) サービスシステムおよびサービスシステム制御方法
CN104520836A (zh) 用于促进应用之间的服务提供的系统和方法
US9419945B2 (en) Systems and methods for providing and operating a secure communication network
US20130227276A1 (en) Device management apparatus, method for device management, and computer program product
KR102535322B1 (ko) 개인정보 보호 서비스 제공 시스템 및 그 방법
KR20020045082A (ko) 이동 통신 시스템을 이용한 전자 상거래 서비스 인증 및제공 방법
JPH11288402A (ja) インターネット端末システム
JP2008015934A (ja) サービスシステムおよびサービスシステム制御方法
KR20010103240A (ko) 인터넷을 이용한 내용증명/공증방법
US20080134346A1 (en) Transactions Certification Method And System To Protect Privacy On Details Of Electronic Transactions
JP4714641B2 (ja) メールアドレス管理装置
JP4887129B2 (ja) 更新情報生成装置、識別情報更新システム、識別情報更新方法およびプログラム
JP5156064B2 (ja) 個人特定id管理システム
JP4133578B2 (ja) コンテンツ中継装置、コンテンツ共有管理システム、その管理プログラムおよび管理方法
JP5120144B2 (ja) 機密情報管理システム、機密情報管理方法、及びプログラム
JP2005250779A (ja) 属性管理装置、通信システム、及び、属性提供方法
US20090235340A1 (en) Identification management system for electronic device authentication
JP2002259254A (ja) 端末認証システム、情報提供装置、端末認証方法、及びプログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07828194

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07828194

Country of ref document: EP

Kind code of ref document: A1